5b816279c21663d1edffd3fdde22264af27fcfb7ce2fa3ad7798816687f5e4b1 | Triage

Sharing

General

Target

5b816279c21663d1edffd3fdde22264af27fcfb7ce2fa3ad7798816687f5e4b1
Size

5KB
Sample

240522-1ya5laae4v
MD5

b8ea9cdec5579bf5660e68b27352bfd8
SHA1

b7a4c02904ac0a1263225d713d3b8c5334717784
SHA256

5b816279c21663d1edffd3fdde22264af27fcfb7ce2fa3ad7798816687f5e4b1
SHA512

508a78d45778f978391ea4307841fc041d61c617a2a78a22e0c014d3271f16051b7c67905850d98e6f36cb70fdfcbdc285932150c906305b23c9918e1d97dcca
SSDEEP

96:mB/XYtGvLGadiruKDcewAnQWRRUN2CqD:mBPYtPrJQWRRs

Score

7^/10

Malware Config

Targets

- Target
  
  5b816279c21663d1edffd3fdde22264af27fcfb7ce2fa3ad7798816687f5e4b1
- Size
  
  5KB
- MD5
  
  b8ea9cdec5579bf5660e68b27352bfd8
- SHA1
  
  b7a4c02904ac0a1263225d713d3b8c5334717784
- SHA256
  
  5b816279c21663d1edffd3fdde22264af27fcfb7ce2fa3ad7798816687f5e4b1
- SHA512
  
  508a78d45778f978391ea4307841fc041d61c617a2a78a22e0c014d3271f16051b7c67905850d98e6f36cb70fdfcbdc285932150c906305b23c9918e1d97dcca
- SSDEEP
  
  96:mB/XYtGvLGadiruKDcewAnQWRRUN2CqD:mBPYtPrJQWRRs
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2