da24cd1f87cf77baf60271e71cff299b4274c6c7ce145addc196d7216dacc7d6 | Triage

Sharing

General

Target

da24cd1f87cf77baf60271e71cff299b4274c6c7ce145addc196d7216dacc7d6
Size

1.1MB
Sample

240710-zxdzeszdrm
MD5

24b190b5e94f3882295e64f1469c3e89
SHA1

df1d9faf8fd384bf2c6701477cf472966d616884
SHA256

da24cd1f87cf77baf60271e71cff299b4274c6c7ce145addc196d7216dacc7d6
SHA512

6a7f4ff860c4cbfe1f7ded981decef6163443ea5c7fd6bcb6efb9c6fd6975ec4a4c10971c4a66f22deea4e191e28db57173b6cbcdbff3f518bcbbe2cddb8c4e4
SSDEEP

24576:CH0dl8myX9Bg42QoXFkrzkmmlSgRDko0lG4Z8r7Qfbkiu5Q1:CcaClSFlG4ZM7QzMO

Score

7^/10

Malware Config

Targets

- Target
  
  da24cd1f87cf77baf60271e71cff299b4274c6c7ce145addc196d7216dacc7d6
- Size
  
  1.1MB
- MD5
  
  24b190b5e94f3882295e64f1469c3e89
- SHA1
  
  df1d9faf8fd384bf2c6701477cf472966d616884
- SHA256
  
  da24cd1f87cf77baf60271e71cff299b4274c6c7ce145addc196d7216dacc7d6
- SHA512
  
  6a7f4ff860c4cbfe1f7ded981decef6163443ea5c7fd6bcb6efb9c6fd6975ec4a4c10971c4a66f22deea4e191e28db57173b6cbcdbff3f518bcbbe2cddb8c4e4
- SSDEEP
  
  24576:CH0dl8myX9Bg42QoXFkrzkmmlSgRDko0lG4Z8r7Qfbkiu5Q1:CcaClSFlG4ZM7QzMO
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2