63357c0ff474b1181608caa4e391a42901e6ce5c58fbc3c94425d4326d70d96c | Triage

Sharing

Copy URL Twitter E-mail

General

Target

63357c0ff474b1181608caa4e391a42901e6ce5c58fbc3c94425d4326d70d96c
Size

1.1MB
Sample

240806-a7yzxaxgmh
MD5

b8fefb2d72486ad1c055fec53570445c
SHA1

e16a416fbf9d23b2232ef31c2d3359dd5a1d4814
SHA256

63357c0ff474b1181608caa4e391a42901e6ce5c58fbc3c94425d4326d70d96c
SHA512

f6f8eec6491e1c00aafcf16c4a393a21b87ba2b62be658224c85890086f664ce31655183e2b74778ed52bd538a49c3924a399f18d64d1105865014cd8b684aac
SSDEEP

24576:aH0dl8myX9Bg42QoXFkrzkmplSgRDYo0lG4Z8r7Qfbkiu5Q6:acallSllG4ZM7QzMp

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  63357c0ff474b1181608caa4e391a42901e6ce5c58fbc3c94425d4326d70d96c
- Size
  
  1.1MB
- MD5
  
  b8fefb2d72486ad1c055fec53570445c
- SHA1
  
  e16a416fbf9d23b2232ef31c2d3359dd5a1d4814
- SHA256
  
  63357c0ff474b1181608caa4e391a42901e6ce5c58fbc3c94425d4326d70d96c
- SHA512
  
  f6f8eec6491e1c00aafcf16c4a393a21b87ba2b62be658224c85890086f664ce31655183e2b74778ed52bd538a49c3924a399f18d64d1105865014cd8b684aac
- SSDEEP
  
  24576:aH0dl8myX9Bg42QoXFkrzkmplSgRDYo0lG4Z8r7Qfbkiu5Q6:acallSllG4ZM7QzMp
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2