0b6c36488bcb097d2b217fd15c7794c54a7991b6c9858e2dfa2bd06c3f3c41e7 | Triage

Sharing

General

Target

virussign.com_27b6bd825a546f97eef0488370acc8a0.vir
Size

37KB
Sample

240528-v4sc6see99
MD5

27b6bd825a546f97eef0488370acc8a0
SHA1

50262c75d6e81573795311da39f3784554cde50f
SHA256

0b6c36488bcb097d2b217fd15c7794c54a7991b6c9858e2dfa2bd06c3f3c41e7
SHA512

f6aa891e1c291be4407c9e775ed5222b6b3ca5dc54adbd4f40d4ed5b8aa09b359abdfdd9479b14d537d9d3fc7fe567616b650513a41222235ae286fafdf9e789
SSDEEP

384:oPDUQ/pgeY/PiZpIPHbABisNtA0lYDlIq9dXrm7AG3fmPIJq96NhKl1S:+l/BEPiAvbAbDYDlJdXqEG3eyDKk

Score

7^/10

Malware Config

Targets

- Target
  
  virussign.com_27b6bd825a546f97eef0488370acc8a0.vir
- Size
  
  37KB
- MD5
  
  27b6bd825a546f97eef0488370acc8a0
- SHA1
  
  50262c75d6e81573795311da39f3784554cde50f
- SHA256
  
  0b6c36488bcb097d2b217fd15c7794c54a7991b6c9858e2dfa2bd06c3f3c41e7
- SHA512
  
  f6aa891e1c291be4407c9e775ed5222b6b3ca5dc54adbd4f40d4ed5b8aa09b359abdfdd9479b14d537d9d3fc7fe567616b650513a41222235ae286fafdf9e789
- SSDEEP
  
  384:oPDUQ/pgeY/PiZpIPHbABisNtA0lYDlIq9dXrm7AG3fmPIJq96NhKl1S:+l/BEPiAvbAbDYDlJdXqEG3eyDKk
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2