5e79442f86903d4063907017ea07055410d4e695cf085d407a80ef88fb498aca | Triage

Sharing

General

Target

5e79442f86903d4063907017ea07055410d4e695cf085d407a80ef88fb498aca
Size

1.1MB
Sample

240921-zpmatstcjn
MD5

1b3f1bb35b892df2b68227dd4c57fe65
SHA1

dbde078bd504603e3671ba71e667369c92374373
SHA256

5e79442f86903d4063907017ea07055410d4e695cf085d407a80ef88fb498aca
SHA512

9d45a6e2a29897e9ff449b305696c80c0504d071d3decf6ad132dcf9696be9e69c8ab17a0c78e878b8db2e338f3dd2eff326dc4a9bcc41a0a2f41bf49b05ec5e
SSDEEP

24576:CH0dl8myX9Bg42QoXFkrzkmmlSgRDko0lG4Z8r7Qfbkiu5QA:CcaClSFlG4ZM7QzMX

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  5e79442f86903d4063907017ea07055410d4e695cf085d407a80ef88fb498aca
- Size
  
  1.1MB
- MD5
  
  1b3f1bb35b892df2b68227dd4c57fe65
- SHA1
  
  dbde078bd504603e3671ba71e667369c92374373
- SHA256
  
  5e79442f86903d4063907017ea07055410d4e695cf085d407a80ef88fb498aca
- SHA512
  
  9d45a6e2a29897e9ff449b305696c80c0504d071d3decf6ad132dcf9696be9e69c8ab17a0c78e878b8db2e338f3dd2eff326dc4a9bcc41a0a2f41bf49b05ec5e
- SSDEEP
  
  24576:CH0dl8myX9Bg42QoXFkrzkmmlSgRDko0lG4Z8r7Qfbkiu5QA:CcaClSFlG4ZM7QzMX
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2