5ade4c2e11b772250affc097b27853dce14d5b9ac7a5b50b91c7177da5f282cc | Triage

Sharing

Copy URL Twitter E-mail

General

Target

5ade4c2e11b772250affc097b27853dce14d5b9ac7a5b50b91c7177da5f282cc
Size

1.1MB
Sample

240503-z9b1laab69
MD5

cea5555615bf611f1dfa5eabcbc91ca7
SHA1

98c6ac542a68fccf38ec52920621c0c3cee1d47e
SHA256

5ade4c2e11b772250affc097b27853dce14d5b9ac7a5b50b91c7177da5f282cc
SHA512

d8171d3a39293d3302143ba83afe426692e6d7c269e34837e748dfa950a209d615be5bbfde6f132a33d5207d905acfb65ddad468453e7d897157b9838c49fe4e
SSDEEP

24576:CH0dl8myX9Bg42QoXFkrzkmmlSgRDko0lG4Z8r7Qfbkiu5Qn:CcaClSFlG4ZM7QzMA

Score

7^/10

Malware Config

Targets

- Target
  
  5ade4c2e11b772250affc097b27853dce14d5b9ac7a5b50b91c7177da5f282cc
- Size
  
  1.1MB
- MD5
  
  cea5555615bf611f1dfa5eabcbc91ca7
- SHA1
  
  98c6ac542a68fccf38ec52920621c0c3cee1d47e
- SHA256
  
  5ade4c2e11b772250affc097b27853dce14d5b9ac7a5b50b91c7177da5f282cc
- SHA512
  
  d8171d3a39293d3302143ba83afe426692e6d7c269e34837e748dfa950a209d615be5bbfde6f132a33d5207d905acfb65ddad468453e7d897157b9838c49fe4e
- SSDEEP
  
  24576:CH0dl8myX9Bg42QoXFkrzkmmlSgRDko0lG4Z8r7Qfbkiu5Qn:CcaClSFlG4ZM7QzMA
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2