5aa148fdb850f69bd2587a417ebbbb3499d0b019c372124227793ad11dd5c2db | Triage

Sharing

General

Target

5aa148fdb850f69bd2587a417ebbbb3499d0b019c372124227793ad11dd5c2db
Size

1.1MB
Sample

240907-2lcnbszajq
MD5

fc9e222839a9f0038737e271c99a116e
SHA1

325f1da7d91e7fd6f56c97d4c52a77a9fe2299d6
SHA256

5aa148fdb850f69bd2587a417ebbbb3499d0b019c372124227793ad11dd5c2db
SHA512

e8b16c802f3af87c8e431f922e6c3cc673d7c9fcf6c37445d3c625462304c57f3327f92ab743ea66922e8f3b7a20a93b9dd9c4eaf65d090259a2c7b25ea9181d
SSDEEP

24576:aH0dl8myX9Bg42QoXFkrzkmplSgRDYo0lG4Z8r7Qfbkiu5Ql:acallSllG4ZM7QzM+

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  5aa148fdb850f69bd2587a417ebbbb3499d0b019c372124227793ad11dd5c2db
- Size
  
  1.1MB
- MD5
  
  fc9e222839a9f0038737e271c99a116e
- SHA1
  
  325f1da7d91e7fd6f56c97d4c52a77a9fe2299d6
- SHA256
  
  5aa148fdb850f69bd2587a417ebbbb3499d0b019c372124227793ad11dd5c2db
- SHA512
  
  e8b16c802f3af87c8e431f922e6c3cc673d7c9fcf6c37445d3c625462304c57f3327f92ab743ea66922e8f3b7a20a93b9dd9c4eaf65d090259a2c7b25ea9181d
- SSDEEP
  
  24576:aH0dl8myX9Bg42QoXFkrzkmplSgRDYo0lG4Z8r7Qfbkiu5Ql:acallSllG4ZM7QzM+
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2