15f4218be77d7391d5168829a60ee498ee686c08946a0272882d036726379c67 | Triage

Sharing

General

Target

15f4218be77d7391d5168829a60ee498ee686c08946a0272882d036726379c67.exe
Size

12KB
Sample

240522-eae8rabb3s
MD5

27059e1cd993cb056f0855acb2f17710
SHA1

96fa4275e67a611e234cc562395e3ca3e2345f6b
SHA256

15f4218be77d7391d5168829a60ee498ee686c08946a0272882d036726379c67
SHA512

5170524a135b3bb65bad2dc724830ededfd5cdb3200085e7560c20b7275a777abc583973820780c55b6084c317ac825a75b70ebf6e4b5f990c14e3fc66f199f6
SSDEEP

384:6L7li/2z7q2DcEQvdhcJKLTp/NK9xaQ4:kHM/Q9cQ4

Score

7^/10

Malware Config

Targets

- Target
  
  15f4218be77d7391d5168829a60ee498ee686c08946a0272882d036726379c67.exe
- Size
  
  12KB
- MD5
  
  27059e1cd993cb056f0855acb2f17710
- SHA1
  
  96fa4275e67a611e234cc562395e3ca3e2345f6b
- SHA256
  
  15f4218be77d7391d5168829a60ee498ee686c08946a0272882d036726379c67
- SHA512
  
  5170524a135b3bb65bad2dc724830ededfd5cdb3200085e7560c20b7275a777abc583973820780c55b6084c317ac825a75b70ebf6e4b5f990c14e3fc66f199f6
- SSDEEP
  
  384:6L7li/2z7q2DcEQvdhcJKLTp/NK9xaQ4:kHM/Q9cQ4
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Uses the VBS compiler for execution
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Scripting

Persistence

Privilege Escalation

Defense Evasion

Scripting

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

behavioral2