c028aaf806a36b84b99758e62fa30c0383ce5c87bdca51576face46ef18e020b | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c028aaf806a36b84b99758e62fa30c0383ce5c87bdca51576face46ef18e020b
Size

1.1MB
Sample

240526-zx53xaca9x
MD5

8b68fc6d3cbafbdc9319b57afad93483
SHA1

453906a90ad62dd9b974abd934477fd2779dcdf8
SHA256

c028aaf806a36b84b99758e62fa30c0383ce5c87bdca51576face46ef18e020b
SHA512

9d6ba3428e9199c9a2ed9c4c3b3dec1ec7e853a98583c530cee4957669315da241a195711bc83a436c7f9d635e615c8a12f3e8eaf63642ce44099fff87451ba8
SSDEEP

24576:CH0dl8myX9Bg42QoXFkrzkmmlSgRDko0lG4Z8r7Qfbkiu5Qw:CcaClSFlG4ZM7QzMX

Score

7^/10

Malware Config

Targets

- Target
  
  c028aaf806a36b84b99758e62fa30c0383ce5c87bdca51576face46ef18e020b
- Size
  
  1.1MB
- MD5
  
  8b68fc6d3cbafbdc9319b57afad93483
- SHA1
  
  453906a90ad62dd9b974abd934477fd2779dcdf8
- SHA256
  
  c028aaf806a36b84b99758e62fa30c0383ce5c87bdca51576face46ef18e020b
- SHA512
  
  9d6ba3428e9199c9a2ed9c4c3b3dec1ec7e853a98583c530cee4957669315da241a195711bc83a436c7f9d635e615c8a12f3e8eaf63642ce44099fff87451ba8
- SSDEEP
  
  24576:CH0dl8myX9Bg42QoXFkrzkmmlSgRDko0lG4Z8r7Qfbkiu5Qw:CcaClSFlG4ZM7QzMX
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2