3baf5ffe90e05c04e29799aab86638f23af788263fc1bb01e4d9cce498d00aba | Triage

Sharing

General

Target

3baf5ffe90e05c04e29799aab86638f23af788263fc1bb01e4d9cce498d00aba
Size

1.1MB
Sample

240925-zazbvawenp
MD5

58808fabead141c979dee46ce4bf5a13
SHA1

2f60cc3587770738314b00335cca868533d5dab0
SHA256

3baf5ffe90e05c04e29799aab86638f23af788263fc1bb01e4d9cce498d00aba
SHA512

b3a756434d5dcd55e4231947c746cb7948324953614847e40f9a98bd612207588d1e1659395a46c9dc6a89f379a5f520441b73870ec5bca458767b5b6bd0fb18
SSDEEP

24576:CH0dl8myX9Bg42QoXFkrzkmmlSgRDko0lG4Z8r7Qfbkiu5QE:CcaClSFlG4ZM7QzMD

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  3baf5ffe90e05c04e29799aab86638f23af788263fc1bb01e4d9cce498d00aba
- Size
  
  1.1MB
- MD5
  
  58808fabead141c979dee46ce4bf5a13
- SHA1
  
  2f60cc3587770738314b00335cca868533d5dab0
- SHA256
  
  3baf5ffe90e05c04e29799aab86638f23af788263fc1bb01e4d9cce498d00aba
- SHA512
  
  b3a756434d5dcd55e4231947c746cb7948324953614847e40f9a98bd612207588d1e1659395a46c9dc6a89f379a5f520441b73870ec5bca458767b5b6bd0fb18
- SSDEEP
  
  24576:CH0dl8myX9Bg42QoXFkrzkmmlSgRDko0lG4Z8r7Qfbkiu5QE:CcaClSFlG4ZM7QzMD
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2