6d559726ece3eee5a1f68dd9a122e8eb859309a083f04a904857a41251d9e47e | Triage

Sharing

Copy URL Twitter E-mail

General

Target

6d559726ece3eee5a1f68dd9a122e8eb859309a083f04a904857a41251d9e47e
Size

1.1MB
Sample

240906-1cfsysyenj
MD5

482b1b9d103ca461ef3380d9e6f06471
SHA1

b2baf06ef2eea223e2d4e085e7be717b28213e73
SHA256

6d559726ece3eee5a1f68dd9a122e8eb859309a083f04a904857a41251d9e47e
SHA512

2162a34a23da76f5264277903e74b783c57859b645b4327bd336730a0e7975774e842f266fe7284fdc9fd2574d854dc01899b4afbd93716733254cbf9980748a
SSDEEP

24576:CH0dl8myX9Bg42QoXFkrzkmmlSgRDko0lG4Z8r7Qfbkiu5Qt:CcaClSFlG4ZM7QzM2

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  6d559726ece3eee5a1f68dd9a122e8eb859309a083f04a904857a41251d9e47e
- Size
  
  1.1MB
- MD5
  
  482b1b9d103ca461ef3380d9e6f06471
- SHA1
  
  b2baf06ef2eea223e2d4e085e7be717b28213e73
- SHA256
  
  6d559726ece3eee5a1f68dd9a122e8eb859309a083f04a904857a41251d9e47e
- SHA512
  
  2162a34a23da76f5264277903e74b783c57859b645b4327bd336730a0e7975774e842f266fe7284fdc9fd2574d854dc01899b4afbd93716733254cbf9980748a
- SSDEEP
  
  24576:CH0dl8myX9Bg42QoXFkrzkmmlSgRDko0lG4Z8r7Qfbkiu5Qt:CcaClSFlG4ZM7QzM2
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2