4c6e3040d0830419bbd71eab76dbfdfed3a7d7725767abecc925bc9386437192 | Triage

Sharing

General

Target

4c6e3040d0830419bbd71eab76dbfdfed3a7d7725767abecc925bc9386437192
Size

1.1MB
Sample

240903-atzdhsshkc
MD5

af79f57a7ba2da15c0501e3b3e4081ab
SHA1

b16a393c30f792c9d50e754907c6f4805dab7102
SHA256

4c6e3040d0830419bbd71eab76dbfdfed3a7d7725767abecc925bc9386437192
SHA512

677a1b6fe577bdeb75140f1098a3600a52ae6631806b2e214d6ab9ba85c7d231c6fad02c589e6ddbd1266f60ec1ad43bbabe4a09f2f494ef080d97185c1b1eff
SSDEEP

24576:CH0dl8myX9Bg42QoXFkrzkmmlSgRDko0lG4Z8r7Qfbkiu5Q5:CcaClSFlG4ZM7QzM6

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  4c6e3040d0830419bbd71eab76dbfdfed3a7d7725767abecc925bc9386437192
- Size
  
  1.1MB
- MD5
  
  af79f57a7ba2da15c0501e3b3e4081ab
- SHA1
  
  b16a393c30f792c9d50e754907c6f4805dab7102
- SHA256
  
  4c6e3040d0830419bbd71eab76dbfdfed3a7d7725767abecc925bc9386437192
- SHA512
  
  677a1b6fe577bdeb75140f1098a3600a52ae6631806b2e214d6ab9ba85c7d231c6fad02c589e6ddbd1266f60ec1ad43bbabe4a09f2f494ef080d97185c1b1eff
- SSDEEP
  
  24576:CH0dl8myX9Bg42QoXFkrzkmmlSgRDko0lG4Z8r7Qfbkiu5Q5:CcaClSFlG4ZM7QzM6
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2