2d02a36a03813e99cc39da777cee525ed6575bd3594b00810b7e166c6582b07a | Triage

Sharing

General

Target

2d02a36a03813e99cc39da777cee525ed6575bd3594b00810b7e166c6582b07a
Size

12KB
Sample

240606-ze82vacg88
MD5

656b3d1ca72bf5fc3e1d51051240fc42
SHA1

c5010299b52fe066a6b7b844c84ececaae404315
SHA256

2d02a36a03813e99cc39da777cee525ed6575bd3594b00810b7e166c6582b07a
SHA512

d76dece5c175e75382083bb9896b3da22c6e4d26dfa9b0a5fdeafc66eaa022cb680eb3a91e57fddc87774e773f3e2f443a2ee9d9816a97d20e1ae26dfceff1d9
SSDEEP

384:iL7li/2zNq2DcEQvdhcJKLTp/NK9xauH:8dM/Q9cuH

Score

7^/10

Malware Config

Targets

- Target
  
  2d02a36a03813e99cc39da777cee525ed6575bd3594b00810b7e166c6582b07a
- Size
  
  12KB
- MD5
  
  656b3d1ca72bf5fc3e1d51051240fc42
- SHA1
  
  c5010299b52fe066a6b7b844c84ececaae404315
- SHA256
  
  2d02a36a03813e99cc39da777cee525ed6575bd3594b00810b7e166c6582b07a
- SHA512
  
  d76dece5c175e75382083bb9896b3da22c6e4d26dfa9b0a5fdeafc66eaa022cb680eb3a91e57fddc87774e773f3e2f443a2ee9d9816a97d20e1ae26dfceff1d9
- SSDEEP
  
  384:iL7li/2zNq2DcEQvdhcJKLTp/NK9xauH:8dM/Q9cuH
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Uses the VBS compiler for execution
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Scripting

Persistence

Privilege Escalation

Defense Evasion

Scripting

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2