6070b1db3acecc3ff0c6892c57fb2993dcce05353845140cf02abc4ba27bd22a | Triage

Sharing

General

Target

6070b1db3acecc3ff0c6892c57fb2993dcce05353845140cf02abc4ba27bd22aN
Size

2.7MB
Sample

241003-xq6pra1gnk
MD5

1013696a7112cad9d1175f876cc51db0
SHA1

c0ee1e1872ce56b8413e23d3c38633d33e04386f
SHA256

6070b1db3acecc3ff0c6892c57fb2993dcce05353845140cf02abc4ba27bd22a
SHA512

000a5b82add76991dd62a50c182ccbb60c028b92b05aaec5d1311db1f920a80574f243335c46580fab69df5a3d94028f19c0c5b0c32c8b6b7a8147c3b652d420
SSDEEP

49152:9WyT+P66XbOP/ZzA2DItg1Hoaz6wecYfFkURwlhyAuLjf/IVgs5+xP:bTE66yXZ02DwUHoazRofxIhELjf/IVgs

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  6070b1db3acecc3ff0c6892c57fb2993dcce05353845140cf02abc4ba27bd22aN
- Size
  
  2.7MB
- MD5
  
  1013696a7112cad9d1175f876cc51db0
- SHA1
  
  c0ee1e1872ce56b8413e23d3c38633d33e04386f
- SHA256
  
  6070b1db3acecc3ff0c6892c57fb2993dcce05353845140cf02abc4ba27bd22a
- SHA512
  
  000a5b82add76991dd62a50c182ccbb60c028b92b05aaec5d1311db1f920a80574f243335c46580fab69df5a3d94028f19c0c5b0c32c8b6b7a8147c3b652d420
- SSDEEP
  
  49152:9WyT+P66XbOP/ZzA2DItg1Hoaz6wecYfFkURwlhyAuLjf/IVgs5+xP:bTE66yXZ02DwUHoazRofxIhELjf/IVgs
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Remote System Discovery

System Information Discovery

System Location Discovery

System Language Discovery

System Network Configuration Discovery

Internet Connection Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2