3e60df14f184c8352b95a8fdf956570cad573e76b2bb0da3ae034baaaf189367 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

3e60df14f184c8352b95a8fdf956570cad573e76b2bb0da3ae034baaaf189367
Size

1.2MB
Sample

240927-x3g7xsxera
MD5

780bc29d3e92837ec7d6c4739db163d2
SHA1

c95c4faa5d436b88e8422ce22827aa08a96a4cb2
SHA256

3e60df14f184c8352b95a8fdf956570cad573e76b2bb0da3ae034baaaf189367
SHA512

7877914634d74bdf735e34fe6ddb15c826e2ff19974a7692b2376721314f6cc202d704f6625503e98d1776aefdcf09fd95b0eed8c6d980abb0c24e2abd76a9a2
SSDEEP

6144:2BDHmrz4niNy8o3Zp/TWt+g4RQTDUBO8/2vh+ziDV8m56TBac2Guu:wDHmoniNy8L8g4RgoBO8/2vhDX56Tl

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  3e60df14f184c8352b95a8fdf956570cad573e76b2bb0da3ae034baaaf189367
- Size
  
  1.2MB
- MD5
  
  780bc29d3e92837ec7d6c4739db163d2
- SHA1
  
  c95c4faa5d436b88e8422ce22827aa08a96a4cb2
- SHA256
  
  3e60df14f184c8352b95a8fdf956570cad573e76b2bb0da3ae034baaaf189367
- SHA512
  
  7877914634d74bdf735e34fe6ddb15c826e2ff19974a7692b2376721314f6cc202d704f6625503e98d1776aefdcf09fd95b0eed8c6d980abb0c24e2abd76a9a2
- SSDEEP
  
  6144:2BDHmrz4niNy8o3Zp/TWt+g4RQTDUBO8/2vh+ziDV8m56TBac2Guu:wDHmoniNy8L8g4RgoBO8/2vhDX56Tl
Score

7^/10

discovery persistence
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Executes dropped EXE
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence