80c1ce64896d6c0af8f195c8481c2e50c53327cf5013a360491be65062f377d3 | Triage

Sharing

General

Target

80c1ce64896d6c0af8f195c8481c2e50c53327cf5013a360491be65062f377d3
Size

1.1MB
Sample

240628-1chybasfja
MD5

8c4a409d0560881608cc950799b682f3
SHA1

4c58d036e5d8dd2804a5cc29faf4e5cf812f3f71
SHA256

80c1ce64896d6c0af8f195c8481c2e50c53327cf5013a360491be65062f377d3
SHA512

9c8a505209d6de7e6d1ef8677fe76f853233bef4fee1b473c81fc9df72f81d2c50f50e647a7e636f7bb14c484dab9163a999b1640030364a1ddf52f7738c21e2
SSDEEP

24576:CH0dl8myX9Bg42QoXFkrzkmmlSgRDko0lG4Z8r7Qfbkiu5QW:CcaClSFlG4ZM7QzMt

Score

7^/10

Malware Config

Targets

- Target
  
  80c1ce64896d6c0af8f195c8481c2e50c53327cf5013a360491be65062f377d3
- Size
  
  1.1MB
- MD5
  
  8c4a409d0560881608cc950799b682f3
- SHA1
  
  4c58d036e5d8dd2804a5cc29faf4e5cf812f3f71
- SHA256
  
  80c1ce64896d6c0af8f195c8481c2e50c53327cf5013a360491be65062f377d3
- SHA512
  
  9c8a505209d6de7e6d1ef8677fe76f853233bef4fee1b473c81fc9df72f81d2c50f50e647a7e636f7bb14c484dab9163a999b1640030364a1ddf52f7738c21e2
- SSDEEP
  
  24576:CH0dl8myX9Bg42QoXFkrzkmmlSgRDko0lG4Z8r7Qfbkiu5QW:CcaClSFlG4ZM7QzMt
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2