57e35004c2ed6bf7c82c60929e6bd3ee9a6b85e6d45aba09137a7dea99dd20ea | Triage

Sharing

Copy URL Twitter E-mail

General

Target

57e35004c2ed6bf7c82c60929e6bd3ee9a6b85e6d45aba09137a7dea99dd20ea
Size

1.1MB
Sample

240630-dy7ggawhmk
MD5

e223c1e33d0362c644bebf5c0adab7c8
SHA1

7a750ead2881c7a08e76edfbe9f00408522b6bc4
SHA256

57e35004c2ed6bf7c82c60929e6bd3ee9a6b85e6d45aba09137a7dea99dd20ea
SHA512

c0f36a782b70b06da2702c27d855c802dee4fe31fa79664db60e9ef818a4b0883a727114b2eb05d36f8d289a54c33339eeb65c64aca8e340341fd672a73dc881
SSDEEP

24576:CH0dl8myX9Bg42QoXFkrzkmmlSgRDko0lG4Z8r7Qfbkiu5QE:CcaClSFlG4ZM7QzMT

Score

7^/10

Malware Config

Targets

- Target
  
  57e35004c2ed6bf7c82c60929e6bd3ee9a6b85e6d45aba09137a7dea99dd20ea
- Size
  
  1.1MB
- MD5
  
  e223c1e33d0362c644bebf5c0adab7c8
- SHA1
  
  7a750ead2881c7a08e76edfbe9f00408522b6bc4
- SHA256
  
  57e35004c2ed6bf7c82c60929e6bd3ee9a6b85e6d45aba09137a7dea99dd20ea
- SHA512
  
  c0f36a782b70b06da2702c27d855c802dee4fe31fa79664db60e9ef818a4b0883a727114b2eb05d36f8d289a54c33339eeb65c64aca8e340341fd672a73dc881
- SSDEEP
  
  24576:CH0dl8myX9Bg42QoXFkrzkmmlSgRDko0lG4Z8r7Qfbkiu5QE:CcaClSFlG4ZM7QzMT
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2