99c1deff5b3f3b401128625a37d1c7ff1eb4752bde02756fb88f14e2ebba1f06 | Triage

Sharing

General

Target

99c1deff5b3f3b401128625a37d1c7ff1eb4752bde02756fb88f14e2ebba1f06
Size

1.1MB
Sample

240710-zy5tjasekc
MD5

09fc4e2ff1c048f4fc346a8d61d6f203
SHA1

3f0743f92c439bbbd600320ab231c517e1a530fb
SHA256

99c1deff5b3f3b401128625a37d1c7ff1eb4752bde02756fb88f14e2ebba1f06
SHA512

752ed67aebbea9087122df1e8d991241707b216e0af6cfaf03561dfa7c49a5cf6e62ed08cddbb435ba0ed7fa96481cbbeb19d5981f418c66d92821cb8635715f
SSDEEP

24576:CH0dl8myX9Bg42QoXFkrzkmmlSgRDko0lG4Z8r7Qfbkiu5Qj:CcaClSFlG4ZM7QzM0

Score

7^/10

Malware Config

Targets

- Target
  
  99c1deff5b3f3b401128625a37d1c7ff1eb4752bde02756fb88f14e2ebba1f06
- Size
  
  1.1MB
- MD5
  
  09fc4e2ff1c048f4fc346a8d61d6f203
- SHA1
  
  3f0743f92c439bbbd600320ab231c517e1a530fb
- SHA256
  
  99c1deff5b3f3b401128625a37d1c7ff1eb4752bde02756fb88f14e2ebba1f06
- SHA512
  
  752ed67aebbea9087122df1e8d991241707b216e0af6cfaf03561dfa7c49a5cf6e62ed08cddbb435ba0ed7fa96481cbbeb19d5981f418c66d92821cb8635715f
- SSDEEP
  
  24576:CH0dl8myX9Bg42QoXFkrzkmmlSgRDko0lG4Z8r7Qfbkiu5Qj:CcaClSFlG4ZM7QzM0
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2