4fdbd8f0db3f4782e4e279d9fd38dda5df097fa1b2ff5b16e757779095e80440 | Triage

Sharing

General

Target

4fdbd8f0db3f4782e4e279d9fd38dda5df097fa1b2ff5b16e757779095e80440
Size

1.1MB
Sample

240816-yzxc4sxhqq
MD5

a14d7ffd5316f97528d43bd556c0debc
SHA1

20a0f2baa2d0a815e21b516dd93e2da276fc9299
SHA256

4fdbd8f0db3f4782e4e279d9fd38dda5df097fa1b2ff5b16e757779095e80440
SHA512

d19f399fd6633683522e0b0121f9b76f8c66f17cab065b38b357d5c2345277e8ae5412d0053f0588099b6831dcff587803826a7bf83ea957d8232042fc086f3d
SSDEEP

24576:aH0dl8myX9Bg42QoXFkrzkmplSgRDYo0lG4Z8r7Qfbkiu5Qk:acallSllG4ZM7QzMT

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  4fdbd8f0db3f4782e4e279d9fd38dda5df097fa1b2ff5b16e757779095e80440
- Size
  
  1.1MB
- MD5
  
  a14d7ffd5316f97528d43bd556c0debc
- SHA1
  
  20a0f2baa2d0a815e21b516dd93e2da276fc9299
- SHA256
  
  4fdbd8f0db3f4782e4e279d9fd38dda5df097fa1b2ff5b16e757779095e80440
- SHA512
  
  d19f399fd6633683522e0b0121f9b76f8c66f17cab065b38b357d5c2345277e8ae5412d0053f0588099b6831dcff587803826a7bf83ea957d8232042fc086f3d
- SSDEEP
  
  24576:aH0dl8myX9Bg42QoXFkrzkmplSgRDYo0lG4Z8r7Qfbkiu5Qk:acallSllG4ZM7QzMT
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2