8e740f493643cd64a01962143a457d19c48ed133b005b5e27771f0dd2fdf982b | Triage

Sharing

Copy URL Twitter E-mail

General

Target

8e740f493643cd64a01962143a457d19c48ed133b005b5e27771f0dd2fdf982b
Size

1.1MB
Sample

240913-y5n9paxdqg
MD5

f859177fe309b40f57e30396a2192d7f
SHA1

fbc0413b8e52aa8dffb632a45d0533db1fb0222e
SHA256

8e740f493643cd64a01962143a457d19c48ed133b005b5e27771f0dd2fdf982b
SHA512

5f004d53069b91b568862de872e6917ddc7fed506551a1793dd91b56b5b8752bf5e27401ea0023ad1651c1af24835587a76222cdc1f3a9eaf98485657a3a2749
SSDEEP

24576:aH0dl8myX9Bg42QoXFkrzkmplSgRDYo0lG4Z8r7Qfbkiu5QC:acallSllG4ZM7QzMR

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  8e740f493643cd64a01962143a457d19c48ed133b005b5e27771f0dd2fdf982b
- Size
  
  1.1MB
- MD5
  
  f859177fe309b40f57e30396a2192d7f
- SHA1
  
  fbc0413b8e52aa8dffb632a45d0533db1fb0222e
- SHA256
  
  8e740f493643cd64a01962143a457d19c48ed133b005b5e27771f0dd2fdf982b
- SHA512
  
  5f004d53069b91b568862de872e6917ddc7fed506551a1793dd91b56b5b8752bf5e27401ea0023ad1651c1af24835587a76222cdc1f3a9eaf98485657a3a2749
- SSDEEP
  
  24576:aH0dl8myX9Bg42QoXFkrzkmplSgRDYo0lG4Z8r7Qfbkiu5QC:acallSllG4ZM7QzMR
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2