314d6dbe9971844bbdf90a7612cfc6d34c64f840a0fefd722e77e19579908d48 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

314d6dbe9971844bbdf90a7612cfc6d34c64f840a0fefd722e77e19579908d48
Size

1.1MB
Sample

240826-jze2havfmj
MD5

3d6489ca490943d14a96916356d4ddb1
SHA1

17d89c4bd7ea058917e9ad2d19e669a67e723a7a
SHA256

314d6dbe9971844bbdf90a7612cfc6d34c64f840a0fefd722e77e19579908d48
SHA512

8b1324a642ccbb55bd7571ec859ad1dd5ff119b1ecb0a08f58ac4c33eaea789f0ca0a162e27da872f03902d948bcc11d9fdb71df80f43e233ce023ad63fef23f
SSDEEP

24576:aH0dl8myX9Bg42QoXFkrzkmplSgRDYo0lG4Z8r7Qfbkiu5QZ:acallSllG4ZM7QzM6

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  314d6dbe9971844bbdf90a7612cfc6d34c64f840a0fefd722e77e19579908d48
- Size
  
  1.1MB
- MD5
  
  3d6489ca490943d14a96916356d4ddb1
- SHA1
  
  17d89c4bd7ea058917e9ad2d19e669a67e723a7a
- SHA256
  
  314d6dbe9971844bbdf90a7612cfc6d34c64f840a0fefd722e77e19579908d48
- SHA512
  
  8b1324a642ccbb55bd7571ec859ad1dd5ff119b1ecb0a08f58ac4c33eaea789f0ca0a162e27da872f03902d948bcc11d9fdb71df80f43e233ce023ad63fef23f
- SSDEEP
  
  24576:aH0dl8myX9Bg42QoXFkrzkmplSgRDYo0lG4Z8r7Qfbkiu5QZ:acallSllG4ZM7QzM6
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2