bec0173b62f9452daadd5bffad779d1edcd5b70ef1e4dc8e2934a8dea8646c3d | Triage

Sharing

Copy URL Twitter E-mail

General

Target

bec0173b62f9452daadd5bffad779d1edcd5b70ef1e4dc8e2934a8dea8646c3d
Size

1.1MB
Sample

240503-sp6k5saa6w
MD5

e3cd1a3508f18f7070bf2afa654901b3
SHA1

780d68c2da2df99f2fc8365981f1c7ca96486cf6
SHA256

bec0173b62f9452daadd5bffad779d1edcd5b70ef1e4dc8e2934a8dea8646c3d
SHA512

b3c815488005a5fe20b57368d5031e6a1aea9c34e459acac57809ddb33f29b6256a5651e4377dab46ef6ea3ca2848dc570a834250c3878e74b16b837050415eb
SSDEEP

24576:aH0pl8myX9BgT2QooFkrzkmmlSgRZko0lG4Z8r7Qfbkiu5Qb:a6aClSXlG4ZM7QzM8

Score

7^/10

Malware Config

Targets

- Target
  
  bec0173b62f9452daadd5bffad779d1edcd5b70ef1e4dc8e2934a8dea8646c3d
- Size
  
  1.1MB
- MD5
  
  e3cd1a3508f18f7070bf2afa654901b3
- SHA1
  
  780d68c2da2df99f2fc8365981f1c7ca96486cf6
- SHA256
  
  bec0173b62f9452daadd5bffad779d1edcd5b70ef1e4dc8e2934a8dea8646c3d
- SHA512
  
  b3c815488005a5fe20b57368d5031e6a1aea9c34e459acac57809ddb33f29b6256a5651e4377dab46ef6ea3ca2848dc570a834250c3878e74b16b837050415eb
- SSDEEP
  
  24576:aH0pl8myX9BgT2QooFkrzkmmlSgRZko0lG4Z8r7Qfbkiu5Qb:a6aClSXlG4ZM7QzM8
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2