7619c6dfb7257978d565e6366992b7251f4268e6c7e6cc63cea57b54e47abecb | Triage

Sharing

General

Target

7619c6dfb7257978d565e6366992b7251f4268e6c7e6cc63cea57b54e47abecb
Size

5KB
Sample

240522-29atmscg52
MD5

fb7ed7320154e5df1d918dc8c54b4ff1
SHA1

00ba2b48be2bf0207fb0e96e399824cbe256ee99
SHA256

7619c6dfb7257978d565e6366992b7251f4268e6c7e6cc63cea57b54e47abecb
SHA512

4a8facc8408aaa32db6028cdb317d4183c060ccba8566832712a4dc71ae48de760959849dc1c685d8f757ff9f41e8f05c14df866543552a16f4182e9f5e33004
SSDEEP

48:qao9qAmcRB/G98Bh3FaSmjce1rsHB/VnC/RAxUh2CS70ALNx:6rhLvXr+uHnnwR2Uh2ClAhx

Score

7^/10

Malware Config

Targets

- Target
  
  7619c6dfb7257978d565e6366992b7251f4268e6c7e6cc63cea57b54e47abecb
- Size
  
  5KB
- MD5
  
  fb7ed7320154e5df1d918dc8c54b4ff1
- SHA1
  
  00ba2b48be2bf0207fb0e96e399824cbe256ee99
- SHA256
  
  7619c6dfb7257978d565e6366992b7251f4268e6c7e6cc63cea57b54e47abecb
- SHA512
  
  4a8facc8408aaa32db6028cdb317d4183c060ccba8566832712a4dc71ae48de760959849dc1c685d8f757ff9f41e8f05c14df866543552a16f4182e9f5e33004
- SSDEEP
  
  48:qao9qAmcRB/G98Bh3FaSmjce1rsHB/VnC/RAxUh2CS70ALNx:6rhLvXr+uHnnwR2Uh2ClAhx
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Subvert Trust Controls

Install Root Certificate

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

behavioral2