0833c4e8e1125dbc4ec18d3803be63778cf3cb2d1a77c8398f3b380c1c7e25cb | Triage

Sharing

General

Target

SecuriteInfo.com.Trojan.DownLoad3.33216.13863.20878.exe
Size

5KB
Sample

240522-3g5c8adb8s
MD5

a6edc88e45cdddefc02dcaaa6c0ffc2f
SHA1

37ccc25cc0e31a3d26047b13886b2c2072081cc5
SHA256

0833c4e8e1125dbc4ec18d3803be63778cf3cb2d1a77c8398f3b380c1c7e25cb
SHA512

6a890cb1c1a1e2a2ab87604a64ed4d3e2e922fd5753dea55155e0daf3d469388d9631ba5f8cc5f2cae44f178735029952374bdea480481f14988484f274c05e6
SSDEEP

48:6pTlYrITctYG+vLHmCyYfJyMmw9jAUzEVnQBG/RACalGUbw2CS7DD:mBLYtOvLGazZ6wAnQWRRUbw2CqD

Score

7^/10

Malware Config

Targets

- Target
  
  SecuriteInfo.com.Trojan.DownLoad3.33216.13863.20878.exe
- Size
  
  5KB
- MD5
  
  a6edc88e45cdddefc02dcaaa6c0ffc2f
- SHA1
  
  37ccc25cc0e31a3d26047b13886b2c2072081cc5
- SHA256
  
  0833c4e8e1125dbc4ec18d3803be63778cf3cb2d1a77c8398f3b380c1c7e25cb
- SHA512
  
  6a890cb1c1a1e2a2ab87604a64ed4d3e2e922fd5753dea55155e0daf3d469388d9631ba5f8cc5f2cae44f178735029952374bdea480481f14988484f274c05e6
- SSDEEP
  
  48:6pTlYrITctYG+vLHmCyYfJyMmw9jAUzEVnQBG/RACalGUbw2CS7DD:mBLYtOvLGazZ6wAnQWRRUbw2CqD
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2