c66c2406497f05c434d6f2db08e3fb313c62a1debbaf8f3eb1cba6aaaf83767d | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c66c2406497f05c434d6f2db08e3fb313c62a1debbaf8f3eb1cba6aaaf83767d
Size

1.1MB
Sample

240912-275w1a1ene
MD5

ceb96fe1e3ba068d954a4c0f3172c7c0
SHA1

3b533ecc86dcb1cda7ed08a4ab68b967d5aed9de
SHA256

c66c2406497f05c434d6f2db08e3fb313c62a1debbaf8f3eb1cba6aaaf83767d
SHA512

529549b2cc2e681e061e0359c2ba780888392d71ef4ee5e23d79f90d8b40621ea0ed98d26800da1e58bde713c95d1c2fa37278edfc3239d8cb905f5c4f4bd10f
SSDEEP

24576:aH0dl8myX9Bg42QoXFkrzkmplSgRDYo0lG4Z8r7Qfbkiu5Qf:acallSllG4ZM7QzM4

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  c66c2406497f05c434d6f2db08e3fb313c62a1debbaf8f3eb1cba6aaaf83767d
- Size
  
  1.1MB
- MD5
  
  ceb96fe1e3ba068d954a4c0f3172c7c0
- SHA1
  
  3b533ecc86dcb1cda7ed08a4ab68b967d5aed9de
- SHA256
  
  c66c2406497f05c434d6f2db08e3fb313c62a1debbaf8f3eb1cba6aaaf83767d
- SHA512
  
  529549b2cc2e681e061e0359c2ba780888392d71ef4ee5e23d79f90d8b40621ea0ed98d26800da1e58bde713c95d1c2fa37278edfc3239d8cb905f5c4f4bd10f
- SSDEEP
  
  24576:aH0dl8myX9Bg42QoXFkrzkmplSgRDYo0lG4Z8r7Qfbkiu5Qf:acallSllG4ZM7QzM4
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2