d0613e01498071152bcfa5d00a0c446dbe9155778971ed932ae87fe317d94bd1 | Triage

Sharing

General

Target

d0613e01498071152bcfa5d00a0c446dbe9155778971ed932ae87fe317d94bd1
Size

1.1MB
Sample

240929-gwxq2ascrp
MD5

031bc22357284f776e5cd2799c481a61
SHA1

a4886dae501dea5452ad094d02fce52bb3868937
SHA256

d0613e01498071152bcfa5d00a0c446dbe9155778971ed932ae87fe317d94bd1
SHA512

1813d72a12ade83fff40aba2b128f6fd9e4971d8b1664fa9df8ddd854a13225b24efaadb3da7dcc9fdc6bff6498eb87600dab3768b74c859e71d4a2f65b5f506
SSDEEP

24576:CH0dl8myX9Bg42QoXFkrzkmmlSgRDko0lG4Z8r7Qfbkiu5Qg:CcaClSFlG4ZM7QzMX

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  d0613e01498071152bcfa5d00a0c446dbe9155778971ed932ae87fe317d94bd1
- Size
  
  1.1MB
- MD5
  
  031bc22357284f776e5cd2799c481a61
- SHA1
  
  a4886dae501dea5452ad094d02fce52bb3868937
- SHA256
  
  d0613e01498071152bcfa5d00a0c446dbe9155778971ed932ae87fe317d94bd1
- SHA512
  
  1813d72a12ade83fff40aba2b128f6fd9e4971d8b1664fa9df8ddd854a13225b24efaadb3da7dcc9fdc6bff6498eb87600dab3768b74c859e71d4a2f65b5f506
- SSDEEP
  
  24576:CH0dl8myX9Bg42QoXFkrzkmmlSgRDko0lG4Z8r7Qfbkiu5Qg:CcaClSFlG4ZM7QzMX
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2