3c6bd8f9df3237726799fcc45b748e68381583bedfeba731154765b9c46343ed | Triage

Sharing

General

Target

3c6bd8f9df3237726799fcc45b748e68381583bedfeba731154765b9c46343ed
Size

1.1MB
Sample

240529-14d4facf45
MD5

ca8f4f7f5c8fd3d9fb37b82f31dd724a
SHA1

8990237346c6f1bc9bc6c6a3ff7a48a56d1226c0
SHA256

3c6bd8f9df3237726799fcc45b748e68381583bedfeba731154765b9c46343ed
SHA512

37ce6c1951d3118c9e021a59a48490dcccbf0c84989eb934caa5f73d2d720ba5d54d2f474fef988d21378aeac539ec70252101c30ec6d67cf63b92d4fc74bfe4
SSDEEP

24576:CH0dl8myX9Bg42QoXFkrzkmmlSgRDko0lG4Z8r7Qfbkiu5Q+:CcaClSFlG4ZM7QzMV

Score

7^/10

Malware Config

Targets

- Target
  
  3c6bd8f9df3237726799fcc45b748e68381583bedfeba731154765b9c46343ed
- Size
  
  1.1MB
- MD5
  
  ca8f4f7f5c8fd3d9fb37b82f31dd724a
- SHA1
  
  8990237346c6f1bc9bc6c6a3ff7a48a56d1226c0
- SHA256
  
  3c6bd8f9df3237726799fcc45b748e68381583bedfeba731154765b9c46343ed
- SHA512
  
  37ce6c1951d3118c9e021a59a48490dcccbf0c84989eb934caa5f73d2d720ba5d54d2f474fef988d21378aeac539ec70252101c30ec6d67cf63b92d4fc74bfe4
- SSDEEP
  
  24576:CH0dl8myX9Bg42QoXFkrzkmmlSgRDko0lG4Z8r7Qfbkiu5Q+:CcaClSFlG4ZM7QzMV
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2