37a7650e4faad5a473850441c7d966ba7c2ccdd7969e1fbef758af107bec4205 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

37a7650e4faad5a473850441c7d966ba7c2ccdd7969e1fbef758af107bec4205
Size

1.1MB
Sample

240913-znrh6ayeqc
MD5

65f8c1a030298956c63bd622b70de519
SHA1

d362420fc6e91f416cc5fb296972498ba62f2f27
SHA256

37a7650e4faad5a473850441c7d966ba7c2ccdd7969e1fbef758af107bec4205
SHA512

024b9e9c35721a0ebf2f1776f544f24855cb42977998f653bde9c1fe21356f0b7fdb7bffbc1ff04e740d2ce0c0fefe977e6d50acdd1887be3c80c64ace27544a
SSDEEP

24576:aH0dl8myX9Bg42QoXFkrzkmplSgRDYo0lG4Z8r7Qfbkiu5Qg:acallSllG4ZM7QzMH

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  37a7650e4faad5a473850441c7d966ba7c2ccdd7969e1fbef758af107bec4205
- Size
  
  1.1MB
- MD5
  
  65f8c1a030298956c63bd622b70de519
- SHA1
  
  d362420fc6e91f416cc5fb296972498ba62f2f27
- SHA256
  
  37a7650e4faad5a473850441c7d966ba7c2ccdd7969e1fbef758af107bec4205
- SHA512
  
  024b9e9c35721a0ebf2f1776f544f24855cb42977998f653bde9c1fe21356f0b7fdb7bffbc1ff04e740d2ce0c0fefe977e6d50acdd1887be3c80c64ace27544a
- SSDEEP
  
  24576:aH0dl8myX9Bg42QoXFkrzkmplSgRDYo0lG4Z8r7Qfbkiu5Qg:acallSllG4ZM7QzMH
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2