dcd2aadcb1a25ac56da2e975d5e91a0d58816ba99f4bb010a238b9d74f28b577 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

dcd2aadcb1a25ac56da2e975d5e91a0d58816ba99f4bb010a238b9d74f28b577
Size

1.1MB
Sample

240911-n7gyaazcre
MD5

ac05352ff87c1d53a40e0447399e54c3
SHA1

1bdcd403468131bbe5b040c4166a36afd170a7a5
SHA256

dcd2aadcb1a25ac56da2e975d5e91a0d58816ba99f4bb010a238b9d74f28b577
SHA512

d778d22d99bead835d1d31ef05df735e6ed0679d38815a4dfb9e4bd32fff2febcd56c0e0695ebe481979b70d066c6110f174e985083c0f35f4dac507369b2087
SSDEEP

24576:CH0dl8myX9Bg42QoXFkrzkmmlSgRDko0lG4Z8r7Qfbkiu5Qi:CcaClSFlG4ZM7QzMR

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  dcd2aadcb1a25ac56da2e975d5e91a0d58816ba99f4bb010a238b9d74f28b577
- Size
  
  1.1MB
- MD5
  
  ac05352ff87c1d53a40e0447399e54c3
- SHA1
  
  1bdcd403468131bbe5b040c4166a36afd170a7a5
- SHA256
  
  dcd2aadcb1a25ac56da2e975d5e91a0d58816ba99f4bb010a238b9d74f28b577
- SHA512
  
  d778d22d99bead835d1d31ef05df735e6ed0679d38815a4dfb9e4bd32fff2febcd56c0e0695ebe481979b70d066c6110f174e985083c0f35f4dac507369b2087
- SSDEEP
  
  24576:CH0dl8myX9Bg42QoXFkrzkmmlSgRDko0lG4Z8r7Qfbkiu5Qi:CcaClSFlG4ZM7QzMR
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2