acf2d49937224c9a3c89e26a2ebe406ac1d11c82ca4e896fbfd1150277c253d4 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a7e33817f11e13b5fa168660b8e08e00N
Size

96KB
Sample

240914-gkjp2ayhqq
MD5

a7e33817f11e13b5fa168660b8e08e00
SHA1

4420d96913275e23801fbabbe6c579a831dc90c0
SHA256

acf2d49937224c9a3c89e26a2ebe406ac1d11c82ca4e896fbfd1150277c253d4
SHA512

ddaf76641e7e5586a9a7e2ea04ab7b7368e1239c6d87fa9e38184440f13ecbf292736340e430dfb2f4a47c3a53ea9a9cf20b073e9431131a87165494f9cdf6ee
SSDEEP

3072:lbjgjXxdWBhMwRFy2Rk/kcIAebPph/ATvYKyUDI7Lurg:lfAXxd0qf2L/ATvryOI7ag

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  a7e33817f11e13b5fa168660b8e08e00N
- Size
  
  96KB
- MD5
  
  a7e33817f11e13b5fa168660b8e08e00
- SHA1
  
  4420d96913275e23801fbabbe6c579a831dc90c0
- SHA256
  
  acf2d49937224c9a3c89e26a2ebe406ac1d11c82ca4e896fbfd1150277c253d4
- SHA512
  
  ddaf76641e7e5586a9a7e2ea04ab7b7368e1239c6d87fa9e38184440f13ecbf292736340e430dfb2f4a47c3a53ea9a9cf20b073e9431131a87165494f9cdf6ee
- SSDEEP
  
  3072:lbjgjXxdWBhMwRFy2Rk/kcIAebPph/ATvYKyUDI7Lurg:lfAXxd0qf2L/ATvryOI7ag
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2