946dc63c70a6d0c905de83d12f45103c32b09ec957cd7a84fda4c13512a7c0d4 | Triage

Sharing

General

Target

946dc63c70a6d0c905de83d12f45103c32b09ec957cd7a84fda4c13512a7c0d4
Size

1.1MB
Sample

240524-zb1ajaab3z
MD5

a39f171d82a783d4e551dccc522cab11
SHA1

f2a6c179106cca7e566dc13e16a6e6445f2e4cc3
SHA256

946dc63c70a6d0c905de83d12f45103c32b09ec957cd7a84fda4c13512a7c0d4
SHA512

07b2fb87c97f10944e78c33c6d8eb49806ad0c22943dea4b08c792602a8df8f3fc9e398b669174e7d9782616b299b78379d8238708464667189f6ec68207ad1c
SSDEEP

24576:aH0dl8myX9Bg42QoXFkrzkmplSgRDYo0lG4Z8r7Qfbkiu5QG:acallSllG4ZM7QzMt

Score

7^/10

Malware Config

Targets

- Target
  
  946dc63c70a6d0c905de83d12f45103c32b09ec957cd7a84fda4c13512a7c0d4
- Size
  
  1.1MB
- MD5
  
  a39f171d82a783d4e551dccc522cab11
- SHA1
  
  f2a6c179106cca7e566dc13e16a6e6445f2e4cc3
- SHA256
  
  946dc63c70a6d0c905de83d12f45103c32b09ec957cd7a84fda4c13512a7c0d4
- SHA512
  
  07b2fb87c97f10944e78c33c6d8eb49806ad0c22943dea4b08c792602a8df8f3fc9e398b669174e7d9782616b299b78379d8238708464667189f6ec68207ad1c
- SSDEEP
  
  24576:aH0dl8myX9Bg42QoXFkrzkmplSgRDYo0lG4Z8r7Qfbkiu5QG:acallSllG4ZM7QzMt
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2