ac14a181b75095a6fbdb09c56b2c767ca92d136cd87852e61564ad13524c4d8f | Triage

Sharing

General

Target

ac14a181b75095a6fbdb09c56b2c767ca92d136cd87852e61564ad13524c4d8f
Size

1.1MB
Sample

240919-wyfb4atbrp
MD5

bb8d28488fcae3c534d7c9f52887f13f
SHA1

369788f4a44fcb38c2402d2eb645536959f856e1
SHA256

ac14a181b75095a6fbdb09c56b2c767ca92d136cd87852e61564ad13524c4d8f
SHA512

3cd8ea69e4e591a7903cdb1e322cebf52cce61a26cb998a98cfcd1a994da4dc8b72792ff912869be2bb96c72b579512401d5c87107e59b28cacc285a977bb6e0
SSDEEP

24576:aH0dl8myX9Bg42QoXFkrzkmplSgRDYo0lG4Z8r7Qfbkiu5QM:acallSllG4ZM7QzMr

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  ac14a181b75095a6fbdb09c56b2c767ca92d136cd87852e61564ad13524c4d8f
- Size
  
  1.1MB
- MD5
  
  bb8d28488fcae3c534d7c9f52887f13f
- SHA1
  
  369788f4a44fcb38c2402d2eb645536959f856e1
- SHA256
  
  ac14a181b75095a6fbdb09c56b2c767ca92d136cd87852e61564ad13524c4d8f
- SHA512
  
  3cd8ea69e4e591a7903cdb1e322cebf52cce61a26cb998a98cfcd1a994da4dc8b72792ff912869be2bb96c72b579512401d5c87107e59b28cacc285a977bb6e0
- SSDEEP
  
  24576:aH0dl8myX9Bg42QoXFkrzkmplSgRDYo0lG4Z8r7Qfbkiu5QM:acallSllG4ZM7QzMr
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2