84dc91a1119b03d533a8b2d703307e89a94403d325da57685ff5ce39d7daf1f3 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

84dc91a1119b03d533a8b2d703307e89a94403d325da57685ff5ce39d7daf1f3
Size

1.1MB
Sample

240901-f1ynfsshlg
MD5

fa99c787e1f91561dc336b278b40d1df
SHA1

e58568c34b3b093f0e5b638c3f022a461419eb7b
SHA256

84dc91a1119b03d533a8b2d703307e89a94403d325da57685ff5ce39d7daf1f3
SHA512

fe062113f7e08d437b8f1fbd913a06b69b1ae23a00a9f05ef169ba6358b1a69b83017c0536b4eb972c01bdc4a5754ae951ba18caea465de42658d7f0d255038a
SSDEEP

24576:aH0dl8myX9Bg42QoXFkrzkmplSgRDYo0lG4Z8r7Qfbkiu5Q2:acallSllG4ZM7QzMt

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  84dc91a1119b03d533a8b2d703307e89a94403d325da57685ff5ce39d7daf1f3
- Size
  
  1.1MB
- MD5
  
  fa99c787e1f91561dc336b278b40d1df
- SHA1
  
  e58568c34b3b093f0e5b638c3f022a461419eb7b
- SHA256
  
  84dc91a1119b03d533a8b2d703307e89a94403d325da57685ff5ce39d7daf1f3
- SHA512
  
  fe062113f7e08d437b8f1fbd913a06b69b1ae23a00a9f05ef169ba6358b1a69b83017c0536b4eb972c01bdc4a5754ae951ba18caea465de42658d7f0d255038a
- SSDEEP
  
  24576:aH0dl8myX9Bg42QoXFkrzkmplSgRDYo0lG4Z8r7Qfbkiu5Q2:acallSllG4ZM7QzMt
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2