4fd52090f0f58c413182bfdceb77b2760ca51217d95b06f9fb19af021c1c9955 | Triage

Sharing

General

Target

4fd52090f0f58c413182bfdceb77b2760ca51217d95b06f9fb19af021c1c9955
Size

1.1MB
Sample

240813-ydh9csxcln
MD5

74048ab45ff5e1526565c0d57ea47f18
SHA1

bea0a9386eae83372293c50244fec9590023decb
SHA256

4fd52090f0f58c413182bfdceb77b2760ca51217d95b06f9fb19af021c1c9955
SHA512

67add039799e127d6048ee247b3d3813e47024ada1761b729a327d7d9f5aac867c66cf61d0d731bc19a84a1af59e4334186bd2356056dc65a2d3721555013ac9
SSDEEP

24576:aH0dl8myX9Bg42QoXFkrzkmplSgRDYo0lG4Z8r7Qfbkiu5Q3:acallSllG4ZM7QzMA

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  4fd52090f0f58c413182bfdceb77b2760ca51217d95b06f9fb19af021c1c9955
- Size
  
  1.1MB
- MD5
  
  74048ab45ff5e1526565c0d57ea47f18
- SHA1
  
  bea0a9386eae83372293c50244fec9590023decb
- SHA256
  
  4fd52090f0f58c413182bfdceb77b2760ca51217d95b06f9fb19af021c1c9955
- SHA512
  
  67add039799e127d6048ee247b3d3813e47024ada1761b729a327d7d9f5aac867c66cf61d0d731bc19a84a1af59e4334186bd2356056dc65a2d3721555013ac9
- SSDEEP
  
  24576:aH0dl8myX9Bg42QoXFkrzkmplSgRDYo0lG4Z8r7Qfbkiu5Q3:acallSllG4ZM7QzMA
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2