14d75314c76da54e3a00780d699dd961cbdf8e4a8f068f9b026b924633fdc99e | Triage

Sharing

Copy URL Twitter E-mail

General

Target

14d75314c76da54e3a00780d699dd961cbdf8e4a8f068f9b026b924633fdc99e
Size

1.1MB
Sample

240914-x4jr5s1gph
MD5

f211a663509895a12ebc79e1d23f375b
SHA1

49dc9138b97a8b5b1caa9e8fa4a077695d6cad37
SHA256

14d75314c76da54e3a00780d699dd961cbdf8e4a8f068f9b026b924633fdc99e
SHA512

1dc968a899bf29b4d8d03f40763660971fed83b456815f58060e0081f4acc3990c930ecdc91f43fc2fdb85b9bfbbff2580d9d7221f0afdea3d6f35db80308e1a
SSDEEP

24576:CH0dl8myX9Bg42QoXFkrzkmmlSgRDko0lG4Z8r7Qfbkiu5Qg:CcaClSFlG4ZM7QzM3

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  14d75314c76da54e3a00780d699dd961cbdf8e4a8f068f9b026b924633fdc99e
- Size
  
  1.1MB
- MD5
  
  f211a663509895a12ebc79e1d23f375b
- SHA1
  
  49dc9138b97a8b5b1caa9e8fa4a077695d6cad37
- SHA256
  
  14d75314c76da54e3a00780d699dd961cbdf8e4a8f068f9b026b924633fdc99e
- SHA512
  
  1dc968a899bf29b4d8d03f40763660971fed83b456815f58060e0081f4acc3990c930ecdc91f43fc2fdb85b9bfbbff2580d9d7221f0afdea3d6f35db80308e1a
- SSDEEP
  
  24576:CH0dl8myX9Bg42QoXFkrzkmmlSgRDko0lG4Z8r7Qfbkiu5Qg:CcaClSFlG4ZM7QzM3
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2