d3ca45dfbdf1156990b4eeba1282d2e3f42131b3748a356e1cfe54557f4cdab1 | Triage

Sharing

General

Target

virussign.com_8926cecf11c74e10589cab65ba6bf580.vir
Size

55KB
Sample

240528-vj1h2sdf94
MD5

8926cecf11c74e10589cab65ba6bf580
SHA1

acad9bec360a488cbdc34527deb39af442f14bd4
SHA256

d3ca45dfbdf1156990b4eeba1282d2e3f42131b3748a356e1cfe54557f4cdab1
SHA512

9d7ae6ef11b8dc2532b026e0b370d2374d2651c29652475ccefb708fda38b6d67e9be489fe6f71ff0000f88b7a240ba83d80dc32f872a2cb05a6b5914e494ff9
SSDEEP

768:MApQr0DHvdFJI34nGxusOy9Rp1pLeAxoeC48PqK1OtaP6cCFzENREMZ7Asc:MAaAJlzsh7pWezEPJB+Ok

Score

7^/10

Malware Config

Targets

- Target
  
  virussign.com_8926cecf11c74e10589cab65ba6bf580.vir
- Size
  
  55KB
- MD5
  
  8926cecf11c74e10589cab65ba6bf580
- SHA1
  
  acad9bec360a488cbdc34527deb39af442f14bd4
- SHA256
  
  d3ca45dfbdf1156990b4eeba1282d2e3f42131b3748a356e1cfe54557f4cdab1
- SHA512
  
  9d7ae6ef11b8dc2532b026e0b370d2374d2651c29652475ccefb708fda38b6d67e9be489fe6f71ff0000f88b7a240ba83d80dc32f872a2cb05a6b5914e494ff9
- SSDEEP
  
  768:MApQr0DHvdFJI34nGxusOy9Rp1pLeAxoeC48PqK1OtaP6cCFzENREMZ7Asc:MAaAJlzsh7pWezEPJB+Ok
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2