4094a77af8766c0431a312e6d435ff536514f8124e51f8c4f12e9b41df12ea1a | Triage

Sharing

General

Target

4094a77af8766c0431a312e6d435ff536514f8124e51f8c4f12e9b41df12ea1a
Size

1.1MB
Sample

240906-y736mawekj
MD5

692139bd235a83648043abf1a813f1a4
SHA1

830f005eeebeb9177307603ed3bcc71479cc8a3c
SHA256

4094a77af8766c0431a312e6d435ff536514f8124e51f8c4f12e9b41df12ea1a
SHA512

ab8e1c343840a4f50549dce13feb8eddb7ccdd2d3e1489d461647a6c1a6444dac32910f8f4e9fc655af05876e71d40310f206ee2cb0735b9e69dd7e4e0b0f675
SSDEEP

24576:aH0dl8myX9Bg42QoXFkrzkmplSgRDYo0lG4Z8r7Qfbkiu5Qm:acallSllG4ZM7QzMd

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  4094a77af8766c0431a312e6d435ff536514f8124e51f8c4f12e9b41df12ea1a
- Size
  
  1.1MB
- MD5
  
  692139bd235a83648043abf1a813f1a4
- SHA1
  
  830f005eeebeb9177307603ed3bcc71479cc8a3c
- SHA256
  
  4094a77af8766c0431a312e6d435ff536514f8124e51f8c4f12e9b41df12ea1a
- SHA512
  
  ab8e1c343840a4f50549dce13feb8eddb7ccdd2d3e1489d461647a6c1a6444dac32910f8f4e9fc655af05876e71d40310f206ee2cb0735b9e69dd7e4e0b0f675
- SSDEEP
  
  24576:aH0dl8myX9Bg42QoXFkrzkmplSgRDYo0lG4Z8r7Qfbkiu5Qm:acallSllG4ZM7QzMd
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2