4cd5c7cb1318106426a1bc4d4583c25a0b947ecad5800c9e6408f608d73bfd2d | Triage

Sharing

General

Target

4cd5c7cb1318106426a1bc4d4583c25a0b947ecad5800c9e6408f608d73bfd2d
Size

280KB
Sample

240522-1ad7cahe34
MD5

997395cc174849385fc8e92cc9baa9b7
SHA1

c60d0fb41afbfb544b2346bd8bf2eaf3c9114d37
SHA256

4cd5c7cb1318106426a1bc4d4583c25a0b947ecad5800c9e6408f608d73bfd2d
SHA512

88b0f2a82ecc7efe432427390d830733f9861a55ed80b200936c24f3f24a9f7c1c47993f94fc6cd7a7bebdb95f7a95f48dbef94ca1300c73b2d8a6f4cf9cc23e
SSDEEP

3072:R8ERv3zZZm5c4Sq+YN95wFT0z+QadjN3rOwRXENk+Y0yFNzlUu0Vt:R8EZrm55Zt5wFwz+TdpRXENFTAkVt

Score

7^/10

Malware Config

Targets

- Target
  
  4cd5c7cb1318106426a1bc4d4583c25a0b947ecad5800c9e6408f608d73bfd2d
- Size
  
  280KB
- MD5
  
  997395cc174849385fc8e92cc9baa9b7
- SHA1
  
  c60d0fb41afbfb544b2346bd8bf2eaf3c9114d37
- SHA256
  
  4cd5c7cb1318106426a1bc4d4583c25a0b947ecad5800c9e6408f608d73bfd2d
- SHA512
  
  88b0f2a82ecc7efe432427390d830733f9861a55ed80b200936c24f3f24a9f7c1c47993f94fc6cd7a7bebdb95f7a95f48dbef94ca1300c73b2d8a6f4cf9cc23e
- SSDEEP
  
  3072:R8ERv3zZZm5c4Sq+YN95wFT0z+QadjN3rOwRXENk+Y0yFNzlUu0Vt:R8EZrm55Zt5wFwz+TdpRXENFTAkVt
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2