70e9c6eb610060e489ab54804466093a5c2b41ec54b14cd8da3e09e0d5d81995 | Triage

Sharing

General

Target

70e9c6eb610060e489ab54804466093a5c2b41ec54b14cd8da3e09e0d5d81995
Size

19KB
Sample

221123-mqlpgaeg26
MD5

19b2552be7e6ffee0881705650ebb155
SHA1

9ce62cbb4e20a23ab89b4d2b63fcb571a1a7f8b4
SHA256

70e9c6eb610060e489ab54804466093a5c2b41ec54b14cd8da3e09e0d5d81995
SHA512

fea7759998529083099629de9b43d9763b854b957b1b0cac54ceb0e18ed528f0ae84b339ff378b4e726b0ec2f89c282c82d96854bc59c9c09ddb2b8d5cf3226c
SSDEEP

192:h6IC9B9FFnuZi4polNYf5NIEaS6e5Mbb8O0F+Q1H638I9+51OZ:+FhlENIEapeGb7c+Q1H63VzZ

Score

8^/10

Malware Config

Targets

- Target
  
  70e9c6eb610060e489ab54804466093a5c2b41ec54b14cd8da3e09e0d5d81995
- Size
  
  19KB
- MD5
  
  19b2552be7e6ffee0881705650ebb155
- SHA1
  
  9ce62cbb4e20a23ab89b4d2b63fcb571a1a7f8b4
- SHA256
  
  70e9c6eb610060e489ab54804466093a5c2b41ec54b14cd8da3e09e0d5d81995
- SHA512
  
  fea7759998529083099629de9b43d9763b854b957b1b0cac54ceb0e18ed528f0ae84b339ff378b4e726b0ec2f89c282c82d96854bc59c9c09ddb2b8d5cf3226c
- SSDEEP
  
  192:h6IC9B9FFnuZi4polNYf5NIEaS6e5Mbb8O0F+Q1H638I9+51OZ:+FhlENIEapeGb7c+Q1H63VzZ
Score

8^/10
- Executes dropped EXE
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2