dcbf55ecf7f43a573714d31e7a16dced2280437ec8b7654f8df132c9fc497605 | Triage

Sharing

General

Target

dcbf55ecf7f43a573714d31e7a16dced2280437ec8b7654f8df132c9fc497605
Size

1.1MB
Sample

240522-191vdsbb88
MD5

589863e1364873fa5040635790aaef35
SHA1

9e32135db50d7937fe5a7499676bd49caaf0a45d
SHA256

dcbf55ecf7f43a573714d31e7a16dced2280437ec8b7654f8df132c9fc497605
SHA512

cdb2744aac0dc2fb3c9d15ae4e91a8a7500e1f9d48e79c058c287d8911f066c86ba659d7a071e77f7cd8920c812fa0e69dc279d23c257fb597553b57fcf62068
SSDEEP

24576:CH0dl8myX9Bg42QoXFkrzkmmlSgRDko0lG4Z8r7Qfbkiu5Q6:CcaClSFlG4ZM7QzMp

Score

7^/10

Malware Config

Targets

- Target
  
  dcbf55ecf7f43a573714d31e7a16dced2280437ec8b7654f8df132c9fc497605
- Size
  
  1.1MB
- MD5
  
  589863e1364873fa5040635790aaef35
- SHA1
  
  9e32135db50d7937fe5a7499676bd49caaf0a45d
- SHA256
  
  dcbf55ecf7f43a573714d31e7a16dced2280437ec8b7654f8df132c9fc497605
- SHA512
  
  cdb2744aac0dc2fb3c9d15ae4e91a8a7500e1f9d48e79c058c287d8911f066c86ba659d7a071e77f7cd8920c812fa0e69dc279d23c257fb597553b57fcf62068
- SSDEEP
  
  24576:CH0dl8myX9Bg42QoXFkrzkmmlSgRDko0lG4Z8r7Qfbkiu5Q6:CcaClSFlG4ZM7QzMp
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2