4c9b0571c275b16a326a9451b8fd23f6a21f9fd067ccc2c7d2d6bdd7b2abb97d | Triage

Sharing

Copy URL Twitter E-mail

General

Target

4c9b0571c275b16a326a9451b8fd23f6a21f9fd067ccc2c7d2d6bdd7b2abb97d
Size

1.1MB
Sample

240915-cvw1ws1cnp
MD5

c0bbebaf586056c355824b696942854d
SHA1

ed37b5f992bad0e8ba5a04c7c5b4746385598b0e
SHA256

4c9b0571c275b16a326a9451b8fd23f6a21f9fd067ccc2c7d2d6bdd7b2abb97d
SHA512

95743f8ba6e07d182466c0c6d45443bc24c41ce4ac0e6084b4dea82ee64138a480493a0dd7d4f7c952b3a4098020af50b71277fb3e2c16e4cbc81800aac56be8
SSDEEP

24576:CH0dl8myX9Bg42QoXFkrzkmmlSgRDko0lG4Z8r7Qfbkiu5QD:CcaClSFlG4ZM7QzMU

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  4c9b0571c275b16a326a9451b8fd23f6a21f9fd067ccc2c7d2d6bdd7b2abb97d
- Size
  
  1.1MB
- MD5
  
  c0bbebaf586056c355824b696942854d
- SHA1
  
  ed37b5f992bad0e8ba5a04c7c5b4746385598b0e
- SHA256
  
  4c9b0571c275b16a326a9451b8fd23f6a21f9fd067ccc2c7d2d6bdd7b2abb97d
- SHA512
  
  95743f8ba6e07d182466c0c6d45443bc24c41ce4ac0e6084b4dea82ee64138a480493a0dd7d4f7c952b3a4098020af50b71277fb3e2c16e4cbc81800aac56be8
- SSDEEP
  
  24576:CH0dl8myX9Bg42QoXFkrzkmmlSgRDko0lG4Z8r7Qfbkiu5QD:CcaClSFlG4ZM7QzMU
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2