3f98d7fac02aa028702f4e35f6f2c8e04552ca3fa40a57e56cd15a898b050c20 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

3f98d7fac02aa028702f4e35f6f2c8e04552ca3fa40a57e56cd15a898b050c20
Size

1.1MB
Sample

240704-14jnxssbmk
MD5

67b33a23973c41b8541c2c4ca9717812
SHA1

91dfdf1264d1cdf0134964fc3f1a20428ee0289c
SHA256

3f98d7fac02aa028702f4e35f6f2c8e04552ca3fa40a57e56cd15a898b050c20
SHA512

186d0b3268cc0097ea05ff7e2ea4c7d2db8ab7312a578120c2fea70fae8208539d0a95b7646957424165984e6764ceee1f2da1a0b14d50a465b8ffd71274e493
SSDEEP

24576:aH0dl8myX9Bg42QoXFkrzkmplSgRDYo0lG4Z8r7Qfbkiu5Qw:acallSllG4ZM7QzMH

Score

7^/10

Malware Config

Targets

- Target
  
  3f98d7fac02aa028702f4e35f6f2c8e04552ca3fa40a57e56cd15a898b050c20
- Size
  
  1.1MB
- MD5
  
  67b33a23973c41b8541c2c4ca9717812
- SHA1
  
  91dfdf1264d1cdf0134964fc3f1a20428ee0289c
- SHA256
  
  3f98d7fac02aa028702f4e35f6f2c8e04552ca3fa40a57e56cd15a898b050c20
- SHA512
  
  186d0b3268cc0097ea05ff7e2ea4c7d2db8ab7312a578120c2fea70fae8208539d0a95b7646957424165984e6764ceee1f2da1a0b14d50a465b8ffd71274e493
- SSDEEP
  
  24576:aH0dl8myX9Bg42QoXFkrzkmplSgRDYo0lG4Z8r7Qfbkiu5Qw:acallSllG4ZM7QzMH
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2