145fe65b4608f0cc4cdd4884f4dc7a67adad7da3058b52a19acde05f2909318d | Triage

Sharing

Copy URL Twitter E-mail

General

Target

145fe65b4608f0cc4cdd4884f4dc7a67adad7da3058b52a19acde05f2909318d
Size

1.1MB
Sample

240805-yk9d5azgmb
MD5

ecd495e88efa77f2c44882f524da38df
SHA1

e028619f701897e58370772c0d173f7ba9d800a3
SHA256

145fe65b4608f0cc4cdd4884f4dc7a67adad7da3058b52a19acde05f2909318d
SHA512

6e85d1807fd2db033a3be64be640e9acc9ecbae3ae290de899b6c71d97e924055fbae0642190ebd2cc6a83ff4a694ce858045019ec811405fec9f9be0ac12e71
SSDEEP

24576:CH0dl8myX9Bg42QoXFkrzkmmlSgRDko0lG4Z8r7Qfbkiu5Qt:CcaClSFlG4ZM7QzMm

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  145fe65b4608f0cc4cdd4884f4dc7a67adad7da3058b52a19acde05f2909318d
- Size
  
  1.1MB
- MD5
  
  ecd495e88efa77f2c44882f524da38df
- SHA1
  
  e028619f701897e58370772c0d173f7ba9d800a3
- SHA256
  
  145fe65b4608f0cc4cdd4884f4dc7a67adad7da3058b52a19acde05f2909318d
- SHA512
  
  6e85d1807fd2db033a3be64be640e9acc9ecbae3ae290de899b6c71d97e924055fbae0642190ebd2cc6a83ff4a694ce858045019ec811405fec9f9be0ac12e71
- SSDEEP
  
  24576:CH0dl8myX9Bg42QoXFkrzkmmlSgRDko0lG4Z8r7Qfbkiu5Qt:CcaClSFlG4ZM7QzMm
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2