2888cf9a98b8568919702da2d1ad6f7a3033bd302e0b1e3ce7f4692687ae01f6 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2888cf9a98b8568919702da2d1ad6f7a3033bd302e0b1e3ce7f4692687ae01f6
Size

1.1MB
Sample

240829-j3evxa1cqd
MD5

f95419e378e9b58b0a57a9760337cd15
SHA1

10c96c8ab5de74a51ba55e6b773ef6be36c88c64
SHA256

2888cf9a98b8568919702da2d1ad6f7a3033bd302e0b1e3ce7f4692687ae01f6
SHA512

cb343ff9774f51c2047c5353d118cf00171ac3423ab4b28a82b08f8753d4844893d1a874900c0f84611bea357b12234c490481080cbdb6f5720279627ec3c6d2
SSDEEP

24576:aH0dl8myX9Bg42QoXFkrzkmplSgRDYo0lG4Z8r7Qfbkiu5QI:acallSllG4ZM7QzM/

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2888cf9a98b8568919702da2d1ad6f7a3033bd302e0b1e3ce7f4692687ae01f6
- Size
  
  1.1MB
- MD5
  
  f95419e378e9b58b0a57a9760337cd15
- SHA1
  
  10c96c8ab5de74a51ba55e6b773ef6be36c88c64
- SHA256
  
  2888cf9a98b8568919702da2d1ad6f7a3033bd302e0b1e3ce7f4692687ae01f6
- SHA512
  
  cb343ff9774f51c2047c5353d118cf00171ac3423ab4b28a82b08f8753d4844893d1a874900c0f84611bea357b12234c490481080cbdb6f5720279627ec3c6d2
- SSDEEP
  
  24576:aH0dl8myX9Bg42QoXFkrzkmplSgRDYo0lG4Z8r7Qfbkiu5QI:acallSllG4ZM7QzM/
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2