12e61f40f914ea99b203307064e25e0ff1e8b79a3688611bb4975abecec76d18 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

12e61f40f914ea99b203307064e25e0ff1e8b79a3688611bb4975abecec76d18
Size

1.1MB
Sample

240819-yafn3awcmm
MD5

95e3fff27465e405599915e1f94628b3
SHA1

27ea91700ad66e2441b31fc1794c79172f022c1a
SHA256

12e61f40f914ea99b203307064e25e0ff1e8b79a3688611bb4975abecec76d18
SHA512

cae7793ace438d31e727e61eb89db6ad0cdc8d7754c7ad4017b442d65b37b7d69bc45df6f0af8bfe3707a50d17133191e9dd5402e1e055c66320e90f46467d3c
SSDEEP

24576:CH0dl8myX9Bg42QoXFkrzkmmlSgRDko0lG4Z8r7Qfbkiu5Qj:CcaClSFlG4ZM7QzM0

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  12e61f40f914ea99b203307064e25e0ff1e8b79a3688611bb4975abecec76d18
- Size
  
  1.1MB
- MD5
  
  95e3fff27465e405599915e1f94628b3
- SHA1
  
  27ea91700ad66e2441b31fc1794c79172f022c1a
- SHA256
  
  12e61f40f914ea99b203307064e25e0ff1e8b79a3688611bb4975abecec76d18
- SHA512
  
  cae7793ace438d31e727e61eb89db6ad0cdc8d7754c7ad4017b442d65b37b7d69bc45df6f0af8bfe3707a50d17133191e9dd5402e1e055c66320e90f46467d3c
- SSDEEP
  
  24576:CH0dl8myX9Bg42QoXFkrzkmmlSgRDko0lG4Z8r7Qfbkiu5Qj:CcaClSFlG4ZM7QzM0
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2