d54087e71e4b908afb958974c559eef576533224b9c83c74fd01fd61289c2a41 | Triage

Sharing

General

Target

d54087e71e4b908afb958974c559eef576533224b9c83c74fd01fd61289c2a41
Size

2.7MB
Sample

240824-e6ks4stbna
MD5

ac3ab242cda9abd60b9b5bce92c201c0
SHA1

ad05cec66b8471ba6fad3afb7a2dc16215000555
SHA256

d54087e71e4b908afb958974c559eef576533224b9c83c74fd01fd61289c2a41
SHA512

4965150d36702e824bf9e7ea6b350fcc2ddddc5bdeed05b2d617fc22df3d9b639c73fc648d490d35261e65285842f8ed9eff2d61b8b4be462f02bcfe7ba12113
SSDEEP

49152:9YyT+P66XbOP/ZzA2DItg1Hoaz6wecYfFkURwlhyAuLjf/IVgs5+xP:ZTE66yXZ02DwUHoazRofxIhELjf/IVgs

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  d54087e71e4b908afb958974c559eef576533224b9c83c74fd01fd61289c2a41
- Size
  
  2.7MB
- MD5
  
  ac3ab242cda9abd60b9b5bce92c201c0
- SHA1
  
  ad05cec66b8471ba6fad3afb7a2dc16215000555
- SHA256
  
  d54087e71e4b908afb958974c559eef576533224b9c83c74fd01fd61289c2a41
- SHA512
  
  4965150d36702e824bf9e7ea6b350fcc2ddddc5bdeed05b2d617fc22df3d9b639c73fc648d490d35261e65285842f8ed9eff2d61b8b4be462f02bcfe7ba12113
- SSDEEP
  
  49152:9YyT+P66XbOP/ZzA2DItg1Hoaz6wecYfFkURwlhyAuLjf/IVgs5+xP:ZTE66yXZ02DwUHoazRofxIhELjf/IVgs
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Remote System Discovery

System Information Discovery

System Location Discovery

System Language Discovery

System Network Configuration Discovery

Internet Connection Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2