d4ab95c0f7793c3b51bf2520f77f0d93c498a913e0d6bf4b50d558735ca88915 | Triage

Sharing

General

Target

d4ab95c0f7793c3b51bf2520f77f0d93c498a913e0d6bf4b50d558735ca88915
Size

1.1MB
Sample

240921-dvxg4asgjk
MD5

b01ab8ec07feab91b962c6c5639a3f27
SHA1

927dd60c6919a2bc60241acdf5b8b1c82db2ae92
SHA256

d4ab95c0f7793c3b51bf2520f77f0d93c498a913e0d6bf4b50d558735ca88915
SHA512

7f92ea7a2860cfe464c2c817909c5f22b1f0a49d169e58e349d07e468c94db0bf9ecc1a08f1d624b99749557aeae280fd405f222ff33730891aa029a611e3ce0
SSDEEP

24576:CH0dl8myX9Bg42QoXFkrzkmmlSgRDko0lG4Z8r7Qfbkiu5Qt:CcaClSFlG4ZM7QzMG

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  d4ab95c0f7793c3b51bf2520f77f0d93c498a913e0d6bf4b50d558735ca88915
- Size
  
  1.1MB
- MD5
  
  b01ab8ec07feab91b962c6c5639a3f27
- SHA1
  
  927dd60c6919a2bc60241acdf5b8b1c82db2ae92
- SHA256
  
  d4ab95c0f7793c3b51bf2520f77f0d93c498a913e0d6bf4b50d558735ca88915
- SHA512
  
  7f92ea7a2860cfe464c2c817909c5f22b1f0a49d169e58e349d07e468c94db0bf9ecc1a08f1d624b99749557aeae280fd405f222ff33730891aa029a611e3ce0
- SSDEEP
  
  24576:CH0dl8myX9Bg42QoXFkrzkmmlSgRDko0lG4Z8r7Qfbkiu5Qt:CcaClSFlG4ZM7QzMG
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2