9ce33d4d1381cec48d77f8971049ab2438c6dd7d9b7b97201531a0cda80da11a | Triage

Sharing

General

Target

9ce33d4d1381cec48d77f8971049ab2438c6dd7d9b7b97201531a0cda80da11a
Size

1.1MB
Sample

240805-yk9d5azglg
MD5

d6b3d9678c044d8e3922fddd7df6e108
SHA1

119cb8cc84de96a798b67b5ef40525fd47a14832
SHA256

9ce33d4d1381cec48d77f8971049ab2438c6dd7d9b7b97201531a0cda80da11a
SHA512

b3d381c37ee349b212f93a5c1b2af5b37ce016db88be14ee1810130d2fa74c5652b47b38c9af42351408152c82b1c6d1caf65e2c339a7aa36383de91903fbc28
SSDEEP

24576:aH0dl8myX9Bg42QoXFkrzkmplSgRDYo0lG4Z8r7Qfbkiu5Qr:acallSllG4ZM7QzM8

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  9ce33d4d1381cec48d77f8971049ab2438c6dd7d9b7b97201531a0cda80da11a
- Size
  
  1.1MB
- MD5
  
  d6b3d9678c044d8e3922fddd7df6e108
- SHA1
  
  119cb8cc84de96a798b67b5ef40525fd47a14832
- SHA256
  
  9ce33d4d1381cec48d77f8971049ab2438c6dd7d9b7b97201531a0cda80da11a
- SHA512
  
  b3d381c37ee349b212f93a5c1b2af5b37ce016db88be14ee1810130d2fa74c5652b47b38c9af42351408152c82b1c6d1caf65e2c339a7aa36383de91903fbc28
- SSDEEP
  
  24576:aH0dl8myX9Bg42QoXFkrzkmplSgRDYo0lG4Z8r7Qfbkiu5Qr:acallSllG4ZM7QzM8
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2