8f87ed6e10f5b8b5469a30664fa7b4f4825726471678de850a10d64f740ed238 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

8f87ed6e10f5b8b5469a30664fa7b4f4825726471678de850a10d64f740ed238
Size

1.1MB
Sample

240913-23qlhstfpn
MD5

ca8a4a75921275a9c47c47eec9d8e595
SHA1

acc4c54842cfe19fccffd8708a72ae54828fd224
SHA256

8f87ed6e10f5b8b5469a30664fa7b4f4825726471678de850a10d64f740ed238
SHA512

36e551359d1c009f31168ae210b048654a424aba51a9b585bdeabbd4b8460e76246cf5acca61aeaf91fb53a9f67a15ab0c8759e01a6731daed73af68cbe04c1e
SSDEEP

24576:aH0dl8myX9Bg42QoXFkrzkmplSgRDYo0lG4Z8r7Qfbkiu5QB:acallSllG4ZM7QzMS

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  8f87ed6e10f5b8b5469a30664fa7b4f4825726471678de850a10d64f740ed238
- Size
  
  1.1MB
- MD5
  
  ca8a4a75921275a9c47c47eec9d8e595
- SHA1
  
  acc4c54842cfe19fccffd8708a72ae54828fd224
- SHA256
  
  8f87ed6e10f5b8b5469a30664fa7b4f4825726471678de850a10d64f740ed238
- SHA512
  
  36e551359d1c009f31168ae210b048654a424aba51a9b585bdeabbd4b8460e76246cf5acca61aeaf91fb53a9f67a15ab0c8759e01a6731daed73af68cbe04c1e
- SSDEEP
  
  24576:aH0dl8myX9Bg42QoXFkrzkmplSgRDYo0lG4Z8r7Qfbkiu5QB:acallSllG4ZM7QzMS
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2