6bce9e4d8e60894ae1a9f6dcd66ca90dbc457729f3fd4bcb22027303bc7d9e05 | Triage

Sharing

General

Target

6bce9e4d8e60894ae1a9f6dcd66ca90dbc457729f3fd4bcb22027303bc7d9e05
Size

1.1MB
Sample

240727-1bkqhstamb
MD5

887cce3711e0fac8b9195c600d2d6acf
SHA1

a11118d9e70397f7f2eeb1e1b8298b2d600fc9a2
SHA256

6bce9e4d8e60894ae1a9f6dcd66ca90dbc457729f3fd4bcb22027303bc7d9e05
SHA512

30b5ef204a1ed0630426c6df5111ef053bd8458231214e70fc178bac8a8e89189850a8e87a6705e4c8ca53c8234efdaef5c47d2d4fd296b68a9417d330cb0e59
SSDEEP

24576:CH0dl8myX9Bg42QoXFkrzkmmlSgRDko0lG4Z8r7Qfbkiu5Qy:CcaClSFlG4ZM7QzMx

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  6bce9e4d8e60894ae1a9f6dcd66ca90dbc457729f3fd4bcb22027303bc7d9e05
- Size
  
  1.1MB
- MD5
  
  887cce3711e0fac8b9195c600d2d6acf
- SHA1
  
  a11118d9e70397f7f2eeb1e1b8298b2d600fc9a2
- SHA256
  
  6bce9e4d8e60894ae1a9f6dcd66ca90dbc457729f3fd4bcb22027303bc7d9e05
- SHA512
  
  30b5ef204a1ed0630426c6df5111ef053bd8458231214e70fc178bac8a8e89189850a8e87a6705e4c8ca53c8234efdaef5c47d2d4fd296b68a9417d330cb0e59
- SSDEEP
  
  24576:CH0dl8myX9Bg42QoXFkrzkmmlSgRDko0lG4Z8r7Qfbkiu5Qy:CcaClSFlG4ZM7QzMx
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2