d301390caf48f62507740252646c772d03fe7c6b3f775ae088c3be442eb22baf | Triage

Sharing

Copy URL Twitter E-mail

General

Target

eb88aad1ffab308442617d70a6e86daa.exe
Size

74KB
Sample

240503-jvlcqaad2x
MD5

eb88aad1ffab308442617d70a6e86daa
SHA1

03a9094211213072c87026f7a089f8d9b2a942f6
SHA256

d301390caf48f62507740252646c772d03fe7c6b3f775ae088c3be442eb22baf
SHA512

cb339b3987caa04dbab48ce1ead01a439b9f4d3b4e1a1e764198573c441f5b99c48d1d1d6f21e5c76dfc30d0029d801d33cfc81c5be63356df58ab482f478535
SSDEEP

384:+41DuuOFZyUVpULCgDb2prxVTn24X/m7Q6Al6z+yXpI5555Rp:fDcZyUpULCgo24T96ayX6

Score

8^/10

evasion

Malware Config

Targets

- Target
  
  eb88aad1ffab308442617d70a6e86daa.exe
- Size
  
  74KB
- MD5
  
  eb88aad1ffab308442617d70a6e86daa
- SHA1
  
  03a9094211213072c87026f7a089f8d9b2a942f6
- SHA256
  
  d301390caf48f62507740252646c772d03fe7c6b3f775ae088c3be442eb22baf
- SHA512
  
  cb339b3987caa04dbab48ce1ead01a439b9f4d3b4e1a1e764198573c441f5b99c48d1d1d6f21e5c76dfc30d0029d801d33cfc81c5be63356df58ab482f478535
- SSDEEP
  
  384:+41DuuOFZyUVpULCgDb2prxVTn24X/m7Q6Al6z+yXpI5555Rp:fDcZyUpULCgo24T96ayX6
Score

8^/10

evasion
- Sets file to hidden
  Modifies file attributes to stop it showing in Explorer etc.
  evasion
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Hide Artifacts

Hidden Files and Directories

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2