23f675521896993ee87f73c49588a27d2eebe7d8f44e57d5a7b93c74c87cc83a | Triage

Sharing

Copy URL Twitter E-mail

General

Target

23f675521896993ee87f73c49588a27d2eebe7d8f44e57d5a7b93c74c87cc83a
Size

1.1MB
Sample

240720-zl1daawhkh
MD5

9568267dabcdb29d3d7f345c3a2bb10e
SHA1

6582868df0a386cc776accbfc14ae3b066e4f1c2
SHA256

23f675521896993ee87f73c49588a27d2eebe7d8f44e57d5a7b93c74c87cc83a
SHA512

7a75f247ec57493369519d2ba8553bd660534ed88541be44330d1a07427fe0c782584ca542139566b59de19b66448d2ff7095f13746169eeefa1ac9214298bb8
SSDEEP

24576:CH0dl8myX9Bg42QoXFkrzkmmlSgRDko0lG4Z8r7Qfbkiu5Qk:CcaClSFlG4ZM7QzMD

Score

7^/10

Malware Config

Targets

- Target
  
  23f675521896993ee87f73c49588a27d2eebe7d8f44e57d5a7b93c74c87cc83a
- Size
  
  1.1MB
- MD5
  
  9568267dabcdb29d3d7f345c3a2bb10e
- SHA1
  
  6582868df0a386cc776accbfc14ae3b066e4f1c2
- SHA256
  
  23f675521896993ee87f73c49588a27d2eebe7d8f44e57d5a7b93c74c87cc83a
- SHA512
  
  7a75f247ec57493369519d2ba8553bd660534ed88541be44330d1a07427fe0c782584ca542139566b59de19b66448d2ff7095f13746169eeefa1ac9214298bb8
- SSDEEP
  
  24576:CH0dl8myX9Bg42QoXFkrzkmmlSgRDko0lG4Z8r7Qfbkiu5Qk:CcaClSFlG4ZM7QzMD
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2