726c14887d622af90fa3ccb07ab36647cf715eca53f2603379fc984c167217a1 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

726c14887d622af90fa3ccb07ab36647cf715eca53f2603379fc984c167217a1N
Size

93KB
Sample

240927-yt6plazbpa
MD5

77aa470df078802e026b963e8e19ed30
SHA1

9fd30b9cbd269d93c60ad55e0a38192928163d10
SHA256

726c14887d622af90fa3ccb07ab36647cf715eca53f2603379fc984c167217a1
SHA512

a669dfebccd1094c5c740bf4f48fc5cc5de889bb5802972d0dedbbcf360fbcaf1e7ec75a96839f10af0a5940d670d1efdbc12f8369b8d337afadc47a1ab68c55
SSDEEP

1536:PGYU/W2/HG6QMauSV3ixJHABLrmhH7i9CO+WHg7zRZICrWaGZh7B:PfU/WF6QMauSuiWNi9CO+WARJrWNZn

Score

7^/10

defense_evasion discovery persistence

Malware Config

Targets

- Target
  
  726c14887d622af90fa3ccb07ab36647cf715eca53f2603379fc984c167217a1N
- Size
  
  93KB
- MD5
  
  77aa470df078802e026b963e8e19ed30
- SHA1
  
  9fd30b9cbd269d93c60ad55e0a38192928163d10
- SHA256
  
  726c14887d622af90fa3ccb07ab36647cf715eca53f2603379fc984c167217a1
- SHA512
  
  a669dfebccd1094c5c740bf4f48fc5cc5de889bb5802972d0dedbbcf360fbcaf1e7ec75a96839f10af0a5940d670d1efdbc12f8369b8d337afadc47a1ab68c55
- SSDEEP
  
  1536:PGYU/W2/HG6QMauSV3ixJHABLrmhH7i9CO+WHg7zRZICrWaGZh7B:PfU/WF6QMauSuiWNi9CO+WARJrWNZn
Score

7^/10

defense_evasion discovery persistence
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
- Indicator Removal: File Deletion
  Adversaries may delete files left behind by the actions of their intrusion activity.
  defense_evasion
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Indicator Removal

File Deletion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

defense_evasiondiscoverypersistence

behavioral2

defense_evasiondiscoverypersistence