8a08e9fab5333a5ab546d582afd41fd2229f571d3caf454c6c0a03f7eb9e5704 | Triage

Sharing

General

Target

8a08e9fab5333a5ab546d582afd41fd2229f571d3caf454c6c0a03f7eb9e5704
Size

1.1MB
Sample

240829-ep7xbashlc
MD5

2a512b481d90e0062bb8d0bc1984bb97
SHA1

05732e7340d6dfe9ae849461c421c3b77cab4a3e
SHA256

8a08e9fab5333a5ab546d582afd41fd2229f571d3caf454c6c0a03f7eb9e5704
SHA512

861dd67a9f0e49be56dd20ac171eea4bc2db51496fc4effcc1615eecb679c9941541e6dce6eb87217bef7350458f6d0d9d9525321e2efbba743e07b030f279ef
SSDEEP

24576:aH0dl8myX9Bg42QoXFkrzkmplSgRDYo0lG4Z8r7Qfbkiu5QM:acallSllG4ZM7QzM7

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  8a08e9fab5333a5ab546d582afd41fd2229f571d3caf454c6c0a03f7eb9e5704
- Size
  
  1.1MB
- MD5
  
  2a512b481d90e0062bb8d0bc1984bb97
- SHA1
  
  05732e7340d6dfe9ae849461c421c3b77cab4a3e
- SHA256
  
  8a08e9fab5333a5ab546d582afd41fd2229f571d3caf454c6c0a03f7eb9e5704
- SHA512
  
  861dd67a9f0e49be56dd20ac171eea4bc2db51496fc4effcc1615eecb679c9941541e6dce6eb87217bef7350458f6d0d9d9525321e2efbba743e07b030f279ef
- SSDEEP
  
  24576:aH0dl8myX9Bg42QoXFkrzkmplSgRDYo0lG4Z8r7Qfbkiu5QM:acallSllG4ZM7QzM7
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2