14b545ee3cb019979679be594cfc19ff6995cb45b85812131ebbcce96e22ab2a | Triage

Sharing

General

Target

14b545ee3cb019979679be594cfc19ff6995cb45b85812131ebbcce96e22ab2a.exe
Size

12KB
Sample

240522-c4rsjahf69
MD5

04ecdeca7a854a055635a3cc7e0466a0
SHA1

29574fe29abfcecaa893a593f7c6854b64d24e22
SHA256

14b545ee3cb019979679be594cfc19ff6995cb45b85812131ebbcce96e22ab2a
SHA512

286202f5979ae2fc9a87ed64983686a008c678e4c7c951797822323e89bcc03ca31a748c04d5b4330e8dc5f2e4e23c078329704f8fbb1f609ea439d7a6ffc02d
SSDEEP

384:SL7li/2z0q2DcEQvdhcJKLTp/NK9xa0b:MQM/Q9c0b

Score

7^/10

Malware Config

Targets

- Target
  
  14b545ee3cb019979679be594cfc19ff6995cb45b85812131ebbcce96e22ab2a.exe
- Size
  
  12KB
- MD5
  
  04ecdeca7a854a055635a3cc7e0466a0
- SHA1
  
  29574fe29abfcecaa893a593f7c6854b64d24e22
- SHA256
  
  14b545ee3cb019979679be594cfc19ff6995cb45b85812131ebbcce96e22ab2a
- SHA512
  
  286202f5979ae2fc9a87ed64983686a008c678e4c7c951797822323e89bcc03ca31a748c04d5b4330e8dc5f2e4e23c078329704f8fbb1f609ea439d7a6ffc02d
- SSDEEP
  
  384:SL7li/2z0q2DcEQvdhcJKLTp/NK9xa0b:MQM/Q9c0b
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Uses the VBS compiler for execution
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Scripting

Persistence

Privilege Escalation

Defense Evasion

Scripting

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

behavioral2