7e5a3b8b9f78117f7dc6a32b10ef427d6d65b466ecb7b4525e41a9ebd44ed6b8 | Triage

Sharing

General

Target

7e5a3b8b9f78117f7dc6a32b10ef427d6d65b466ecb7b4525e41a9ebd44ed6b8
Size

1.1MB
Sample

240919-ef4hjazcme
MD5

c685918e696ef53a685478f57c6ed329
SHA1

4a837be7c28b80030bf25dbce6c6b637427468fe
SHA256

7e5a3b8b9f78117f7dc6a32b10ef427d6d65b466ecb7b4525e41a9ebd44ed6b8
SHA512

89a5caad009aada7535039beed64444140c2cd3f141cc075f391c0c83311a5cfcccd146f2e66948027ef3a2378ba933d5f2f1e36eb6948300ce698dd8c27e5c3
SSDEEP

24576:aH0dl8myX9Bg42QoXFkrzkmplSgRDYo0lG4Z8r7Qfbkiu5QD:acallSllG4ZM7QzMk

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  7e5a3b8b9f78117f7dc6a32b10ef427d6d65b466ecb7b4525e41a9ebd44ed6b8
- Size
  
  1.1MB
- MD5
  
  c685918e696ef53a685478f57c6ed329
- SHA1
  
  4a837be7c28b80030bf25dbce6c6b637427468fe
- SHA256
  
  7e5a3b8b9f78117f7dc6a32b10ef427d6d65b466ecb7b4525e41a9ebd44ed6b8
- SHA512
  
  89a5caad009aada7535039beed64444140c2cd3f141cc075f391c0c83311a5cfcccd146f2e66948027ef3a2378ba933d5f2f1e36eb6948300ce698dd8c27e5c3
- SSDEEP
  
  24576:aH0dl8myX9Bg42QoXFkrzkmplSgRDYo0lG4Z8r7Qfbkiu5QD:acallSllG4ZM7QzMk
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2