9a55bcfa8afc6f8b8c2a62e1c4666d778d60b965aa5718b52ca81843eab02c83 | Triage

Sharing

General

Target

9a55bcfa8afc6f8b8c2a62e1c4666d778d60b965aa5718b52ca81843eab02c83
Size

1.1MB
Sample

240913-2yrysavanh
MD5

2ea79118f58d6c515749b0a0c4f765de
SHA1

3d1b52eb0c5840324e7d2f3275249aa0d8a2bde5
SHA256

9a55bcfa8afc6f8b8c2a62e1c4666d778d60b965aa5718b52ca81843eab02c83
SHA512

5a085f6db40963987755de8f0cecb05e95472ab6a4085295d0b3ae7ee21f3b3ce253dd73afd85aea8005991081bb06a2920c1e5fad49c575c8453a3daf5abd28
SSDEEP

24576:CH0dl8myX9Bg42QoXFkrzkmmlSgRDko0lG4Z8r7Qfbkiu5Qu:CcaClSFlG4ZM7QzM1

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  9a55bcfa8afc6f8b8c2a62e1c4666d778d60b965aa5718b52ca81843eab02c83
- Size
  
  1.1MB
- MD5
  
  2ea79118f58d6c515749b0a0c4f765de
- SHA1
  
  3d1b52eb0c5840324e7d2f3275249aa0d8a2bde5
- SHA256
  
  9a55bcfa8afc6f8b8c2a62e1c4666d778d60b965aa5718b52ca81843eab02c83
- SHA512
  
  5a085f6db40963987755de8f0cecb05e95472ab6a4085295d0b3ae7ee21f3b3ce253dd73afd85aea8005991081bb06a2920c1e5fad49c575c8453a3daf5abd28
- SSDEEP
  
  24576:CH0dl8myX9Bg42QoXFkrzkmmlSgRDko0lG4Z8r7Qfbkiu5Qu:CcaClSFlG4ZM7QzM1
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2