7930ed12d87883ddac38d87b485964b106a8b85d939d47b72a8b9f723d86a077 | Triage

Sharing

General

Target

7930ed12d87883ddac38d87b485964b106a8b85d939d47b72a8b9f723d86a077
Size

5KB
Sample

240522-3d6rwada5t
MD5

1ed8fa4e65470cc0197adf9d71e4c30d
SHA1

04d45fe677498ba564ca1aad5d86ca9dd28b5903
SHA256

7930ed12d87883ddac38d87b485964b106a8b85d939d47b72a8b9f723d86a077
SHA512

eab01f2c459c03b70f66b14dd06d7ca301bd5db9db95919b1caa5abcf1ad7dad99579d10c3a27dbb53f9c72075021e4e0798569aff66f2acd0fe628e19750324
SSDEEP

48:qvECf6Am8RB/G9X3/dANnZ1rsHB/VnC/RAxUl2CS70ALNx:nCTxLM1ANnZuHnnwR2Ul2ClAhx

Score

7^/10

Malware Config

Targets

- Target
  
  7930ed12d87883ddac38d87b485964b106a8b85d939d47b72a8b9f723d86a077
- Size
  
  5KB
- MD5
  
  1ed8fa4e65470cc0197adf9d71e4c30d
- SHA1
  
  04d45fe677498ba564ca1aad5d86ca9dd28b5903
- SHA256
  
  7930ed12d87883ddac38d87b485964b106a8b85d939d47b72a8b9f723d86a077
- SHA512
  
  eab01f2c459c03b70f66b14dd06d7ca301bd5db9db95919b1caa5abcf1ad7dad99579d10c3a27dbb53f9c72075021e4e0798569aff66f2acd0fe628e19750324
- SSDEEP
  
  48:qvECf6Am8RB/G9X3/dANnZ1rsHB/VnC/RAxUl2CS70ALNx:nCTxLM1ANnZuHnnwR2Ul2ClAhx
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2