f6290981f571b2e93b6d6875bf05397d118d300b1948bc23753787bc3b46b25c | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0b20aa206d2d4c85aaa233297994edc0N.exe
Size

95KB
Sample

240714-vedhqa1gjf
MD5

0b20aa206d2d4c85aaa233297994edc0
SHA1

d0c147fa3baa72353defa4a94a9fb3a17f78a55e
SHA256

f6290981f571b2e93b6d6875bf05397d118d300b1948bc23753787bc3b46b25c
SHA512

55f1a1252d7f3ff8c0a192f2cb763cfef41e9eae7eec1d19e3316187abe41eeefe05be050c895360a48476af0616038c7be01e0d7bf961e6e0649061e9e98a56
SSDEEP

1536:EGqRGbQHSgOTw1BFxnsUdsdBhMgxRFy2kckEUEVvccRPAAXLSYPph/ATvYSByU6p:lbjgjXxdWBhMwRFy2Rk/kcIAebPph/AE

Score

7^/10

Malware Config

Targets

- Target
  
  0b20aa206d2d4c85aaa233297994edc0N.exe
- Size
  
  95KB
- MD5
  
  0b20aa206d2d4c85aaa233297994edc0
- SHA1
  
  d0c147fa3baa72353defa4a94a9fb3a17f78a55e
- SHA256
  
  f6290981f571b2e93b6d6875bf05397d118d300b1948bc23753787bc3b46b25c
- SHA512
  
  55f1a1252d7f3ff8c0a192f2cb763cfef41e9eae7eec1d19e3316187abe41eeefe05be050c895360a48476af0616038c7be01e0d7bf961e6e0649061e9e98a56
- SSDEEP
  
  1536:EGqRGbQHSgOTw1BFxnsUdsdBhMgxRFy2kckEUEVvccRPAAXLSYPph/ATvYSByU6p:lbjgjXxdWBhMwRFy2Rk/kcIAebPph/AE
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2