e46a94c61517e1714759a725f400d7c776f7537e942fceaac086dd6eff30a874 | Triage

Sharing

General

Target

e46a94c61517e1714759a725f400d7c776f7537e942fceaac086dd6eff30a874
Size

1.1MB
Sample

240522-y5bzcsfc69
MD5

9bf9381638969bad8284e7083df6a0cb
SHA1

bbd0f55b460929f95fc7d71a94afbd0465d1e2cf
SHA256

e46a94c61517e1714759a725f400d7c776f7537e942fceaac086dd6eff30a874
SHA512

494d4adc51f7c43f3e8aaf43d20045cfbc0bcb63df5f407c8a038eb98b98fee1859c07f0c2cd96c8cd24cb844359e5d21ffbb102cc81edff9a67e23eb793e223
SSDEEP

24576:CH0dl8myX9Bg42QoXFkrzkmmlSgRDko0lG4Z8r7Qfbkiu5Qy:CcaClSFlG4ZM7QzMB

Score

7^/10

Malware Config

Targets

- Target
  
  e46a94c61517e1714759a725f400d7c776f7537e942fceaac086dd6eff30a874
- Size
  
  1.1MB
- MD5
  
  9bf9381638969bad8284e7083df6a0cb
- SHA1
  
  bbd0f55b460929f95fc7d71a94afbd0465d1e2cf
- SHA256
  
  e46a94c61517e1714759a725f400d7c776f7537e942fceaac086dd6eff30a874
- SHA512
  
  494d4adc51f7c43f3e8aaf43d20045cfbc0bcb63df5f407c8a038eb98b98fee1859c07f0c2cd96c8cd24cb844359e5d21ffbb102cc81edff9a67e23eb793e223
- SSDEEP
  
  24576:CH0dl8myX9Bg42QoXFkrzkmmlSgRDko0lG4Z8r7Qfbkiu5Qy:CcaClSFlG4ZM7QzMB
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2