52ad8fe95583c3855101e8bb7608aebadab4f83b03638740c58508b9828c2efc | Triage

Sharing

Copy URL Twitter E-mail

General

Target

52ad8fe95583c3855101e8bb7608aebadab4f83b03638740c58508b9828c2efc
Size

1.1MB
Sample

240919-r8syqathlf
MD5

b4425a7fd37c5ab2a96a1acadef7b7d6
SHA1

cd63560d5f0c8f6d9457cadb46f90d89fad8ba39
SHA256

52ad8fe95583c3855101e8bb7608aebadab4f83b03638740c58508b9828c2efc
SHA512

ed649240d77960a3b16dda2709f0f00213aaa4040dcb6f16a4c17861908c830af7db07ac586a695dbb499941e8d7e39d93600e1196527ec9bfdb0120fb39748d
SSDEEP

24576:aH0dl8myX9Bg42QoXFkrzkmplSgRDYo0lG4Z8r7Qfbkiu5QA:acallSllG4ZM7QzMn

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  52ad8fe95583c3855101e8bb7608aebadab4f83b03638740c58508b9828c2efc
- Size
  
  1.1MB
- MD5
  
  b4425a7fd37c5ab2a96a1acadef7b7d6
- SHA1
  
  cd63560d5f0c8f6d9457cadb46f90d89fad8ba39
- SHA256
  
  52ad8fe95583c3855101e8bb7608aebadab4f83b03638740c58508b9828c2efc
- SHA512
  
  ed649240d77960a3b16dda2709f0f00213aaa4040dcb6f16a4c17861908c830af7db07ac586a695dbb499941e8d7e39d93600e1196527ec9bfdb0120fb39748d
- SSDEEP
  
  24576:aH0dl8myX9Bg42QoXFkrzkmplSgRDYo0lG4Z8r7Qfbkiu5QA:acallSllG4ZM7QzMn
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2