a345bbe8b94fa0c006bfa250b1efedc6c290e48ec061d34089a90d91aaa752c6 | Triage

Sharing

General

Target

a345bbe8b94fa0c006bfa250b1efedc6c290e48ec061d34089a90d91aaa752c6
Size

5KB
Sample

240523-bnjasagb7s
MD5

159071c16f398fb445f5480d6a4656ed
SHA1

f1ad6d01b396fe097db67bd0200a7237b4374b83
SHA256

a345bbe8b94fa0c006bfa250b1efedc6c290e48ec061d34089a90d91aaa752c6
SHA512

e604ce592aee2641c5030e6b840e5625fd2eda8b7719b8075b7b8dfef561a512da248c98bece671f128187d64693c1762854a9ca59c1b5e7e4e10ae18cf375af
SSDEEP

48:6hecFbLUTctoGevLHmCyYymxhoBRNptUzEVnQBG/RACalGUF2CS7DD:QUYtevLGayOSXptwAnQWRRUF2CqD

Score

7^/10

Malware Config

Targets

- Target
  
  a345bbe8b94fa0c006bfa250b1efedc6c290e48ec061d34089a90d91aaa752c6
- Size
  
  5KB
- MD5
  
  159071c16f398fb445f5480d6a4656ed
- SHA1
  
  f1ad6d01b396fe097db67bd0200a7237b4374b83
- SHA256
  
  a345bbe8b94fa0c006bfa250b1efedc6c290e48ec061d34089a90d91aaa752c6
- SHA512
  
  e604ce592aee2641c5030e6b840e5625fd2eda8b7719b8075b7b8dfef561a512da248c98bece671f128187d64693c1762854a9ca59c1b5e7e4e10ae18cf375af
- SSDEEP
  
  48:6hecFbLUTctoGevLHmCyYymxhoBRNptUzEVnQBG/RACalGUF2CS7DD:QUYtevLGayOSXptwAnQWRRUF2CqD
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

behavioral2