5f36a9822ea7a8888d33fabce96b35e4adf848589a0371393ea6f001fa4d56ac | Triage

Sharing

Copy URL Twitter E-mail

General

Target

5f36a9822ea7a8888d33fabce96b35e4adf848589a0371393ea6f001fa4d56ac
Size

1.1MB
Sample

240927-xc9jgstgrm
MD5

8f42c8950b85f553544c382706a08e24
SHA1

bd822a3ce6d21d7416e95f3dff6aac3950e3e338
SHA256

5f36a9822ea7a8888d33fabce96b35e4adf848589a0371393ea6f001fa4d56ac
SHA512

883b2d4fd795c9595eb1fe4a83b5c0f9e94b3b69eee8b03a7731173b1d85352699189b50d61c08d4688c1dbc74b952cba5e2389e022a7005f9a096c3f63fbae8
SSDEEP

24576:aH0dl8myX9Bg42QoXFkrzkmplSgRDYo0lG4Z8r7Qfbkiu5Qf:acallSllG4ZM7QzMY

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  5f36a9822ea7a8888d33fabce96b35e4adf848589a0371393ea6f001fa4d56ac
- Size
  
  1.1MB
- MD5
  
  8f42c8950b85f553544c382706a08e24
- SHA1
  
  bd822a3ce6d21d7416e95f3dff6aac3950e3e338
- SHA256
  
  5f36a9822ea7a8888d33fabce96b35e4adf848589a0371393ea6f001fa4d56ac
- SHA512
  
  883b2d4fd795c9595eb1fe4a83b5c0f9e94b3b69eee8b03a7731173b1d85352699189b50d61c08d4688c1dbc74b952cba5e2389e022a7005f9a096c3f63fbae8
- SSDEEP
  
  24576:aH0dl8myX9Bg42QoXFkrzkmplSgRDYo0lG4Z8r7Qfbkiu5Qf:acallSllG4ZM7QzMY
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2