3bd4efcfb32671a2b6d2ef2683b51c15544728fab1e11054c5536814d7dfd8eb | Triage

Sharing

General

Target

3bd4efcfb32671a2b6d2ef2683b51c15544728fab1e11054c5536814d7dfd8eb
Size

1.1MB
Sample

240819-yab1wawckr
MD5

2c5fe210546f4f5ca02a4a7bd7d11b7a
SHA1

7648c8af2db6b913eb51fa3ab87fd49632c8b50f
SHA256

3bd4efcfb32671a2b6d2ef2683b51c15544728fab1e11054c5536814d7dfd8eb
SHA512

79f16f335b88bae0a62aa1855cad918b9faa6a54a63fb5c8e1e01255fc8e2312f3f89fc03232d5628022edf02707b886a8a13f6e1eb5787a1d102653ff90dcf1
SSDEEP

24576:aH0dl8myX9Bg42QoXFkrzkmplSgRDYo0lG4Z8r7Qfbkiu5Qp:acallSllG4ZM7QzM6

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  3bd4efcfb32671a2b6d2ef2683b51c15544728fab1e11054c5536814d7dfd8eb
- Size
  
  1.1MB
- MD5
  
  2c5fe210546f4f5ca02a4a7bd7d11b7a
- SHA1
  
  7648c8af2db6b913eb51fa3ab87fd49632c8b50f
- SHA256
  
  3bd4efcfb32671a2b6d2ef2683b51c15544728fab1e11054c5536814d7dfd8eb
- SHA512
  
  79f16f335b88bae0a62aa1855cad918b9faa6a54a63fb5c8e1e01255fc8e2312f3f89fc03232d5628022edf02707b886a8a13f6e1eb5787a1d102653ff90dcf1
- SSDEEP
  
  24576:aH0dl8myX9Bg42QoXFkrzkmplSgRDYo0lG4Z8r7Qfbkiu5Qp:acallSllG4ZM7QzM6
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2