7ceffc5aa8623a17d8bdf251fb0b755ce252374eeb7348e102c0cd7fd82ce11c | Triage

Sharing

Copy URL Twitter E-mail

General

Target

7ceffc5aa8623a17d8bdf251fb0b755ce252374eeb7348e102c0cd7fd82ce11c
Size

1.1MB
Sample

240821-tqwb8sycla
MD5

3995638b16bd7cb22d2e77d9b1b929ff
SHA1

cfc32004cf04dd5b965011abac7b437a1797e885
SHA256

7ceffc5aa8623a17d8bdf251fb0b755ce252374eeb7348e102c0cd7fd82ce11c
SHA512

a734d6b15d12dcfda7cb787fec69eb33eddee5a90c633aaf26d0e5f4d72733feec49afc4f44f6fcae89c8a361672583fff1492b0e56aba14276b82d8e7d205b0
SSDEEP

24576:CH0dl8myX9Bg42QoXFkrzkmmlSgRDko0lG4Z8r7Qfbkiu5Q+:CcaClSFlG4ZM7QzMF

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  7ceffc5aa8623a17d8bdf251fb0b755ce252374eeb7348e102c0cd7fd82ce11c
- Size
  
  1.1MB
- MD5
  
  3995638b16bd7cb22d2e77d9b1b929ff
- SHA1
  
  cfc32004cf04dd5b965011abac7b437a1797e885
- SHA256
  
  7ceffc5aa8623a17d8bdf251fb0b755ce252374eeb7348e102c0cd7fd82ce11c
- SHA512
  
  a734d6b15d12dcfda7cb787fec69eb33eddee5a90c633aaf26d0e5f4d72733feec49afc4f44f6fcae89c8a361672583fff1492b0e56aba14276b82d8e7d205b0
- SSDEEP
  
  24576:CH0dl8myX9Bg42QoXFkrzkmmlSgRDko0lG4Z8r7Qfbkiu5Q+:CcaClSFlG4ZM7QzMF
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2