aeb3d7639c06facd1ce8a4e98dde91f1ea64a6bd3c13b06b28a5ee2f370f8136 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

aeb3d7639c06facd1ce8a4e98dde91f1ea64a6bd3c13b06b28a5ee2f370f8136
Size

1.1MB
Sample

240530-3gx9xafb47
MD5

49500c9786c108a22fd7ac68e205840d
SHA1

b4e45babbd286bc2d90732e53f2de7e68a8a9623
SHA256

aeb3d7639c06facd1ce8a4e98dde91f1ea64a6bd3c13b06b28a5ee2f370f8136
SHA512

4dd79edd9c11e9a21746b5b09108e64a9567dd730982860fc55291577b03cb99cca7463e87409367e7229ebf7b45ec690db7ef2487a45f6ca8fb3938247fe7ef
SSDEEP

24576:aH0dl8myX9Bg42QoXFkrzkmplSgRDYo0lG4Z8r7Qfbkiu5QL:acallSllG4ZM7QzM8

Score

7^/10

Malware Config

Targets

- Target
  
  aeb3d7639c06facd1ce8a4e98dde91f1ea64a6bd3c13b06b28a5ee2f370f8136
- Size
  
  1.1MB
- MD5
  
  49500c9786c108a22fd7ac68e205840d
- SHA1
  
  b4e45babbd286bc2d90732e53f2de7e68a8a9623
- SHA256
  
  aeb3d7639c06facd1ce8a4e98dde91f1ea64a6bd3c13b06b28a5ee2f370f8136
- SHA512
  
  4dd79edd9c11e9a21746b5b09108e64a9567dd730982860fc55291577b03cb99cca7463e87409367e7229ebf7b45ec690db7ef2487a45f6ca8fb3938247fe7ef
- SSDEEP
  
  24576:aH0dl8myX9Bg42QoXFkrzkmplSgRDYo0lG4Z8r7Qfbkiu5QL:acallSllG4ZM7QzM8
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2