b3fc04b343629f20e3585c8b9df5796d27db479607a3c86ca838b56234d2d8a9 | Triage

Sharing

General

Target

b3fc04b343629f20e3585c8b9df5796d27db479607a3c86ca838b56234d2d8a9
Size

1.1MB
Sample

240710-zy5tjasekb
MD5

579b0058d6e634e57449ca00f9e5fdab
SHA1

77e81ea389e7aa91bd0f0f3edf7c5216f72950e3
SHA256

b3fc04b343629f20e3585c8b9df5796d27db479607a3c86ca838b56234d2d8a9
SHA512

391cd5d9bc1ed28ec8e4dc108ee80cc5adb8394399a66655584633187d902803c85bef1da24826c89580dc5a13a15621a521a154686e06f08960248bbc357443
SSDEEP

24576:CH0dl8myX9Bg42QoXFkrzkmmlSgRDko0lG4Z8r7Qfbkiu5Qh:CcaClSFlG4ZM7QzMC

Score

7^/10

Malware Config

Targets

- Target
  
  b3fc04b343629f20e3585c8b9df5796d27db479607a3c86ca838b56234d2d8a9
- Size
  
  1.1MB
- MD5
  
  579b0058d6e634e57449ca00f9e5fdab
- SHA1
  
  77e81ea389e7aa91bd0f0f3edf7c5216f72950e3
- SHA256
  
  b3fc04b343629f20e3585c8b9df5796d27db479607a3c86ca838b56234d2d8a9
- SHA512
  
  391cd5d9bc1ed28ec8e4dc108ee80cc5adb8394399a66655584633187d902803c85bef1da24826c89580dc5a13a15621a521a154686e06f08960248bbc357443
- SSDEEP
  
  24576:CH0dl8myX9Bg42QoXFkrzkmmlSgRDko0lG4Z8r7Qfbkiu5Qh:CcaClSFlG4ZM7QzMC
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2