0c34516d9e9e08b82a6d3936b0d47b33024d9c3f944a1db958cda4423d8bd1cc | Triage

Sharing

General

Target

0c34516d9e9e08b82a6d3936b0d47b33024d9c3f944a1db958cda4423d8bd1cc
Size

1.1MB
Sample

240704-yt22eayemb
MD5

0c6890612d09b1ec721f941d85578e85
SHA1

82e973d6861f7ad5daa943ad449b6943cfe9ce65
SHA256

0c34516d9e9e08b82a6d3936b0d47b33024d9c3f944a1db958cda4423d8bd1cc
SHA512

a843edd444d573dcd954bda03c8238bbe88ef3be41c3317fcb9a814532f0d1996e896cc26c2e5b74485f90f520890fc6d4de95ee58999337c9e9b1fc39fdf9c0
SSDEEP

24576:aH0dl8myX9Bg42QoXFkrzkmplSgRDYo0lG4Z8r7Qfbkiu5Qj:acallSllG4ZM7QzMU

Score

7^/10

Malware Config

Targets

- Target
  
  0c34516d9e9e08b82a6d3936b0d47b33024d9c3f944a1db958cda4423d8bd1cc
- Size
  
  1.1MB
- MD5
  
  0c6890612d09b1ec721f941d85578e85
- SHA1
  
  82e973d6861f7ad5daa943ad449b6943cfe9ce65
- SHA256
  
  0c34516d9e9e08b82a6d3936b0d47b33024d9c3f944a1db958cda4423d8bd1cc
- SHA512
  
  a843edd444d573dcd954bda03c8238bbe88ef3be41c3317fcb9a814532f0d1996e896cc26c2e5b74485f90f520890fc6d4de95ee58999337c9e9b1fc39fdf9c0
- SSDEEP
  
  24576:aH0dl8myX9Bg42QoXFkrzkmplSgRDYo0lG4Z8r7Qfbkiu5Qj:acallSllG4ZM7QzMU
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2