362a901e9bc4f9b5e8bf52abda47c056f13e7c4c591ddb0097a014909cbadc5d | Triage

Sharing

General

Target

362a901e9bc4f9b5e8bf52abda47c056f13e7c4c591ddb0097a014909cbadc5d
Size

1.1MB
Sample

240525-x98cpafe91
MD5

c87cf4fa1351ace7a8a1051c08cba053
SHA1

a9a54dc04ad5627370e6cab2c5d87dd6a6451bac
SHA256

362a901e9bc4f9b5e8bf52abda47c056f13e7c4c591ddb0097a014909cbadc5d
SHA512

b334e1cbc71155538925d1362952936aefda0867ecae0f508f17706c2538ebba0b17a5e750761d1d61de4fe96ba189e7e5e642ff15436768d609ec42a975351a
SSDEEP

24576:aH0dl8myX9Bg42QoXFkrzkmplSgRDYo0lG4Z8r7Qfbkiu5Qo:acallSllG4ZM7QzMv

Score

7^/10

Malware Config

Targets

- Target
  
  362a901e9bc4f9b5e8bf52abda47c056f13e7c4c591ddb0097a014909cbadc5d
- Size
  
  1.1MB
- MD5
  
  c87cf4fa1351ace7a8a1051c08cba053
- SHA1
  
  a9a54dc04ad5627370e6cab2c5d87dd6a6451bac
- SHA256
  
  362a901e9bc4f9b5e8bf52abda47c056f13e7c4c591ddb0097a014909cbadc5d
- SHA512
  
  b334e1cbc71155538925d1362952936aefda0867ecae0f508f17706c2538ebba0b17a5e750761d1d61de4fe96ba189e7e5e642ff15436768d609ec42a975351a
- SSDEEP
  
  24576:aH0dl8myX9Bg42QoXFkrzkmplSgRDYo0lG4Z8r7Qfbkiu5Qo:acallSllG4ZM7QzMv
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2