af3bebad4c647bbad67aaa5e3b6f5f40c1cfb72c0466ccdf1c83c13873c44587 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

af3bebad4c647bbad67aaa5e3b6f5f40c1cfb72c0466ccdf1c83c13873c44587
Size

1.1MB
Sample

240829-bj1dhaxhkk
MD5

aa291590df61d3544ff115c2217918ca
SHA1

2f79cbf2eec4efd9436af0f9037ba6a575577882
SHA256

af3bebad4c647bbad67aaa5e3b6f5f40c1cfb72c0466ccdf1c83c13873c44587
SHA512

02b173e11d5e8aaa9795185e5b901c92a12508eb4fe2e62998c03b03dedeac834cd06c2f0f2644c1e7cef7f674aa595369c9f11179eb24b3643b8cc0dc42e5ce
SSDEEP

24576:CH0dl8myX9Bg42QoXFkrzkmmlSgRDko0lG4Z8r7Qfbkiu5Qg:CcaClSFlG4ZM7QzMH

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  af3bebad4c647bbad67aaa5e3b6f5f40c1cfb72c0466ccdf1c83c13873c44587
- Size
  
  1.1MB
- MD5
  
  aa291590df61d3544ff115c2217918ca
- SHA1
  
  2f79cbf2eec4efd9436af0f9037ba6a575577882
- SHA256
  
  af3bebad4c647bbad67aaa5e3b6f5f40c1cfb72c0466ccdf1c83c13873c44587
- SHA512
  
  02b173e11d5e8aaa9795185e5b901c92a12508eb4fe2e62998c03b03dedeac834cd06c2f0f2644c1e7cef7f674aa595369c9f11179eb24b3643b8cc0dc42e5ce
- SSDEEP
  
  24576:CH0dl8myX9Bg42QoXFkrzkmmlSgRDko0lG4Z8r7Qfbkiu5Qg:CcaClSFlG4ZM7QzMH
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2