dd1e0cc628a95df301b8b8ca3cda20ad6b9b0c14cb015c29e8a79af8d8e125da | Triage

Sharing

General

Target

dd1e0cc628a95df301b8b8ca3cda20ad6b9b0c14cb015c29e8a79af8d8e125da
Size

1.1MB
Sample

240711-222x6aybqk
MD5

33abe9106e3eeee5a99bc917556a5e71
SHA1

54b3ff50e07df71ff651356829f8f04434d3523f
SHA256

dd1e0cc628a95df301b8b8ca3cda20ad6b9b0c14cb015c29e8a79af8d8e125da
SHA512

e8b8d3117521c250ddca4568ed4567016df8dec45c2467ebf84abc13cf071af9f3a05290c182c62dc503614dacf909796a06a546a3b75a4ed38f51ea8ab74adf
SSDEEP

24576:aH0dl8myX9Bg42QoXFkrzkmplSgRDYo0lG4Z8r7Qfbkiu5QE:acallSllG4ZM7QzMD

Score

7^/10

Malware Config

Targets

- Target
  
  dd1e0cc628a95df301b8b8ca3cda20ad6b9b0c14cb015c29e8a79af8d8e125da
- Size
  
  1.1MB
- MD5
  
  33abe9106e3eeee5a99bc917556a5e71
- SHA1
  
  54b3ff50e07df71ff651356829f8f04434d3523f
- SHA256
  
  dd1e0cc628a95df301b8b8ca3cda20ad6b9b0c14cb015c29e8a79af8d8e125da
- SHA512
  
  e8b8d3117521c250ddca4568ed4567016df8dec45c2467ebf84abc13cf071af9f3a05290c182c62dc503614dacf909796a06a546a3b75a4ed38f51ea8ab74adf
- SSDEEP
  
  24576:aH0dl8myX9Bg42QoXFkrzkmplSgRDYo0lG4Z8r7Qfbkiu5QE:acallSllG4ZM7QzMD
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2