63c8497f9dff38d36c1fe3047b4e63e66027e16b2ef31e29125fb7642791312b | Triage

Sharing

Copy URL Twitter E-mail

General

Target

63c8497f9dff38d36c1fe3047b4e63e66027e16b2ef31e29125fb7642791312b
Size

1.1MB
Sample

240531-x7mm7sbc93
MD5

965b48cdb1e46a5f01feb369c966ce5f
SHA1

c59c3ac9ac57200f738dfe0e94d38f341c31fa8e
SHA256

63c8497f9dff38d36c1fe3047b4e63e66027e16b2ef31e29125fb7642791312b
SHA512

074f25dcac4b231887cf3ee2cd87b56dcd64e8224306b492eeb7db658512abc7720e684973a736a35c11a387fe44d0cd559848fcf51ce8d88c5a8712c5cbc139
SSDEEP

24576:CH0dl8myX9Bg42QoXFkrzkmmlSgRDko0lG4Z8r7Qfbkiu5QM:CcaClSFlG4ZM7QzML

Score

7^/10

Malware Config

Targets

- Target
  
  63c8497f9dff38d36c1fe3047b4e63e66027e16b2ef31e29125fb7642791312b
- Size
  
  1.1MB
- MD5
  
  965b48cdb1e46a5f01feb369c966ce5f
- SHA1
  
  c59c3ac9ac57200f738dfe0e94d38f341c31fa8e
- SHA256
  
  63c8497f9dff38d36c1fe3047b4e63e66027e16b2ef31e29125fb7642791312b
- SHA512
  
  074f25dcac4b231887cf3ee2cd87b56dcd64e8224306b492eeb7db658512abc7720e684973a736a35c11a387fe44d0cd559848fcf51ce8d88c5a8712c5cbc139
- SSDEEP
  
  24576:CH0dl8myX9Bg42QoXFkrzkmmlSgRDko0lG4Z8r7Qfbkiu5QM:CcaClSFlG4ZM7QzML
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2