7df3543ac680bc1e5263858abfc1c1150ed3b3dc486db3d6b4d82873355a0f8b | Triage

Sharing

General

Target

7df3543ac680bc1e5263858abfc1c1150ed3b3dc486db3d6b4d82873355a0f8b
Size

12KB
Sample

240522-b8d7kage35
MD5

8822d9a7bea0149138393d812ec01282
SHA1

4e075c36d0e6b00e880f780b142eda8acef16428
SHA256

7df3543ac680bc1e5263858abfc1c1150ed3b3dc486db3d6b4d82873355a0f8b
SHA512

8a1306bf6282b933d2f21f1a2c91df570ce99f1ec0fee6693b2aa77a0a6d14412723997399e0cf402b2cccb94031225d00adb1aaded704f3d293cb91ec64cc28
SSDEEP

384:4L7li/2zaq2DcEQvdhcJKLTp/NK9xaMXiY:GCM/Q9cMXiY

Score

7^/10

Malware Config

Targets

- Target
  
  7df3543ac680bc1e5263858abfc1c1150ed3b3dc486db3d6b4d82873355a0f8b
- Size
  
  12KB
- MD5
  
  8822d9a7bea0149138393d812ec01282
- SHA1
  
  4e075c36d0e6b00e880f780b142eda8acef16428
- SHA256
  
  7df3543ac680bc1e5263858abfc1c1150ed3b3dc486db3d6b4d82873355a0f8b
- SHA512
  
  8a1306bf6282b933d2f21f1a2c91df570ce99f1ec0fee6693b2aa77a0a6d14412723997399e0cf402b2cccb94031225d00adb1aaded704f3d293cb91ec64cc28
- SSDEEP
  
  384:4L7li/2zaq2DcEQvdhcJKLTp/NK9xaMXiY:GCM/Q9cMXiY
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Uses the VBS compiler for execution
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Scripting

Persistence

Privilege Escalation

Defense Evasion

Scripting

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2