4b7b2f69c69ab422c23f1f76acace7f5cd83861117d1cae56398d847145f1d43 | Triage

Sharing

General

Target

4b7b2f69c69ab422c23f1f76acace7f5cd83861117d1cae56398d847145f1d43
Size

12KB
Sample

240606-2p62cada8z
MD5

cc36e5481ade2f8aff59cc64e1712bb5
SHA1

248e59954c144e31e22b6127890a04710a134718
SHA256

4b7b2f69c69ab422c23f1f76acace7f5cd83861117d1cae56398d847145f1d43
SHA512

c9ee4281d1ea247fd53a3736f57a331abc894d6a9b2ef03464968a8c6950146a36dab3a87bfc32848bede3f7e81dc7bd4415c54cefdb506eb998a39f42536145
SSDEEP

384:hL7li/2zAq2DcEQvdQcJKLTp/NK9xaMi:BMMCQ9cMi

Score

7^/10

Malware Config

Targets

- Target
  
  4b7b2f69c69ab422c23f1f76acace7f5cd83861117d1cae56398d847145f1d43
- Size
  
  12KB
- MD5
  
  cc36e5481ade2f8aff59cc64e1712bb5
- SHA1
  
  248e59954c144e31e22b6127890a04710a134718
- SHA256
  
  4b7b2f69c69ab422c23f1f76acace7f5cd83861117d1cae56398d847145f1d43
- SHA512
  
  c9ee4281d1ea247fd53a3736f57a331abc894d6a9b2ef03464968a8c6950146a36dab3a87bfc32848bede3f7e81dc7bd4415c54cefdb506eb998a39f42536145
- SSDEEP
  
  384:hL7li/2zAq2DcEQvdQcJKLTp/NK9xaMi:BMMCQ9cMi
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Uses the VBS compiler for execution
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Scripting

Persistence

Privilege Escalation

Defense Evasion

Scripting

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2