4565862b2c219fe3eb064435716b9bcab94c3bbc4cfa14acad7497c652609611 | Triage

Sharing

General

Target

4565862b2c219fe3eb064435716b9bcab94c3bbc4cfa14acad7497c652609611
Size

12KB
Sample

240601-zmkzzsfd23
MD5

2db52f76306336a776675fe7f13bfa60
SHA1

bd750fb99e656f8a923c94af1331a335c9a728e7
SHA256

4565862b2c219fe3eb064435716b9bcab94c3bbc4cfa14acad7497c652609611
SHA512

daf795f8a574f6fc07280b37fb3914c871f0f8e382348a6eee89fe2a6e27db4c9ef6e7ec21d2f75dc27e6422553a2bf7d42c005e2854509a0c513358da1e530d
SSDEEP

384:2L7li/2zPq2DcEQvdQcJKLTp/NK9xawf:wbMCQ9cwf

Score

7^/10

Malware Config

Targets

- Target
  
  4565862b2c219fe3eb064435716b9bcab94c3bbc4cfa14acad7497c652609611
- Size
  
  12KB
- MD5
  
  2db52f76306336a776675fe7f13bfa60
- SHA1
  
  bd750fb99e656f8a923c94af1331a335c9a728e7
- SHA256
  
  4565862b2c219fe3eb064435716b9bcab94c3bbc4cfa14acad7497c652609611
- SHA512
  
  daf795f8a574f6fc07280b37fb3914c871f0f8e382348a6eee89fe2a6e27db4c9ef6e7ec21d2f75dc27e6422553a2bf7d42c005e2854509a0c513358da1e530d
- SSDEEP
  
  384:2L7li/2zPq2DcEQvdQcJKLTp/NK9xawf:wbMCQ9cwf
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Uses the VBS compiler for execution
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Scripting

Persistence

Privilege Escalation

Defense Evasion

Scripting

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2