c8b3fc1b0fad1a906f19802d7fd14b700c3ff9d791ea88add10699a556cef115 | Triage

Sharing

General

Target

7bcafa50e97a5d0ebe35cf064e91c6c0N.exe
Size

280KB
Sample

240727-b385ra1hlb
MD5

7bcafa50e97a5d0ebe35cf064e91c6c0
SHA1

8f3cb214ba868e4bae1b9b4560803cc904683b9f
SHA256

c8b3fc1b0fad1a906f19802d7fd14b700c3ff9d791ea88add10699a556cef115
SHA512

5cadd86cf20036c77b9f12daf63a2b31d721b97bb01b5497353311c70daee63be71e5f8e7a7dd0fdf2b48b1de8d9faf2336a47fe02ff0cf2c3b58b5dbdb86d5c
SSDEEP

3072:R8ERv3zZZm5c4Sq+YN95wFT0z+QadjN3rOwRXENk+Y0yFNzlUu0Vv:R8EZrm55Zt5wFwz+TdpRXENFTAkVv

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  7bcafa50e97a5d0ebe35cf064e91c6c0N.exe
- Size
  
  280KB
- MD5
  
  7bcafa50e97a5d0ebe35cf064e91c6c0
- SHA1
  
  8f3cb214ba868e4bae1b9b4560803cc904683b9f
- SHA256
  
  c8b3fc1b0fad1a906f19802d7fd14b700c3ff9d791ea88add10699a556cef115
- SHA512
  
  5cadd86cf20036c77b9f12daf63a2b31d721b97bb01b5497353311c70daee63be71e5f8e7a7dd0fdf2b48b1de8d9faf2336a47fe02ff0cf2c3b58b5dbdb86d5c
- SSDEEP
  
  3072:R8ERv3zZZm5c4Sq+YN95wFT0z+QadjN3rOwRXENk+Y0yFNzlUu0Vv:R8EZrm55Zt5wFwz+TdpRXENFTAkVv
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

behavioral2