9a24ef5fab79ae82e1cd43f109373d2aa9057c66e5a2657598db7f10d46ad63b | Triage

Sharing

Copy URL Twitter E-mail

General

Target

9a24ef5fab79ae82e1cd43f109373d2aa9057c66e5a2657598db7f10d46ad63b
Size

1.1MB
Sample

240424-y1m6tsgg5t
MD5

9c3efe3fe4908dc207a26c4eafe31b09
SHA1

ac6d84d5bc5c13835df7acaeed94cbd46f6042ea
SHA256

9a24ef5fab79ae82e1cd43f109373d2aa9057c66e5a2657598db7f10d46ad63b
SHA512

fd8125bd2d93987dd1add45aeb59ed2aa3255ccafd024bded9fedfba75342599e3f050e80e6d08169086611ec82fddf4eb88c5af4a81a41c633fdfa52e1c7174
SSDEEP

24576:CH0dl8myX9Bg42QoXFkrzkmmlSgRDko0lG4Z8r7Qfbkiu5Qm:CcaClSFlG4ZM7QzMt

Score

7^/10

Malware Config

Targets

- Target
  
  9a24ef5fab79ae82e1cd43f109373d2aa9057c66e5a2657598db7f10d46ad63b
- Size
  
  1.1MB
- MD5
  
  9c3efe3fe4908dc207a26c4eafe31b09
- SHA1
  
  ac6d84d5bc5c13835df7acaeed94cbd46f6042ea
- SHA256
  
  9a24ef5fab79ae82e1cd43f109373d2aa9057c66e5a2657598db7f10d46ad63b
- SHA512
  
  fd8125bd2d93987dd1add45aeb59ed2aa3255ccafd024bded9fedfba75342599e3f050e80e6d08169086611ec82fddf4eb88c5af4a81a41c633fdfa52e1c7174
- SSDEEP
  
  24576:CH0dl8myX9Bg42QoXFkrzkmmlSgRDko0lG4Z8r7Qfbkiu5Qm:CcaClSFlG4ZM7QzMt
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2