36a66ca9c7b439d5f9d544db77731d46951517b0797e335a201c8953851c3a10 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

36a66ca9c7b439d5f9d544db77731d46951517b0797e335a201c8953851c3a10
Size

1.1MB
Sample

240613-fjs2msvdqg
MD5

7f4b2577fc27cfcf5a567c2d68352589
SHA1

800254e4a2bb413a2f7303018d43afe0e9af6529
SHA256

36a66ca9c7b439d5f9d544db77731d46951517b0797e335a201c8953851c3a10
SHA512

01ea2227ea77286a4fc74e5671a578fb3033a9df286268f7f6497327e3d1e2b06d9d2f58cc5e0c8a91435e93a5904e67a649dff346238d401d70633425e50a9e
SSDEEP

24576:aH0dl8myX9Bg42QoXFkrzkmplSgRDYo0lG4Z8r7Qfbkiu5Q8:acallSllG4ZM7QzML

Score

7^/10

Malware Config

Targets

- Target
  
  36a66ca9c7b439d5f9d544db77731d46951517b0797e335a201c8953851c3a10
- Size
  
  1.1MB
- MD5
  
  7f4b2577fc27cfcf5a567c2d68352589
- SHA1
  
  800254e4a2bb413a2f7303018d43afe0e9af6529
- SHA256
  
  36a66ca9c7b439d5f9d544db77731d46951517b0797e335a201c8953851c3a10
- SHA512
  
  01ea2227ea77286a4fc74e5671a578fb3033a9df286268f7f6497327e3d1e2b06d9d2f58cc5e0c8a91435e93a5904e67a649dff346238d401d70633425e50a9e
- SSDEEP
  
  24576:aH0dl8myX9Bg42QoXFkrzkmplSgRDYo0lG4Z8r7Qfbkiu5Q8:acallSllG4ZM7QzML
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2