6ec8acd5186c2be4227d4d2fd9021b30b5712fbf165ea3746f4943dfc9db7768 | Triage

Sharing

General

Target

6ec8acd5186c2be4227d4d2fd9021b30b5712fbf165ea3746f4943dfc9db7768
Size

1.1MB
Sample

240627-z8ckqstfrp
MD5

7a19aff8d8b69b542188df05c772d57b
SHA1

2e5ae039a41f378a5097bbae59ea96b5be2455d6
SHA256

6ec8acd5186c2be4227d4d2fd9021b30b5712fbf165ea3746f4943dfc9db7768
SHA512

b7e6fa29a3109140e663e7033f2ca03840b80dfff532cc82266df410c600120d61d833d87c63ce82957e7b8ed0b64aef9222d56341ef8940ef365a41518c2808
SSDEEP

24576:CH0dl8myX9Bg42QoXFkrzkmmlSgRDko0lG4Z8r7Qfbkiu5Qe:CcaClSFlG4ZM7QzMV

Score

7^/10

Malware Config

Targets

- Target
  
  6ec8acd5186c2be4227d4d2fd9021b30b5712fbf165ea3746f4943dfc9db7768
- Size
  
  1.1MB
- MD5
  
  7a19aff8d8b69b542188df05c772d57b
- SHA1
  
  2e5ae039a41f378a5097bbae59ea96b5be2455d6
- SHA256
  
  6ec8acd5186c2be4227d4d2fd9021b30b5712fbf165ea3746f4943dfc9db7768
- SHA512
  
  b7e6fa29a3109140e663e7033f2ca03840b80dfff532cc82266df410c600120d61d833d87c63ce82957e7b8ed0b64aef9222d56341ef8940ef365a41518c2808
- SSDEEP
  
  24576:CH0dl8myX9Bg42QoXFkrzkmmlSgRDko0lG4Z8r7Qfbkiu5Qe:CcaClSFlG4ZM7QzMV
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2