b40b88a714696986c7a3ff4bd86cb1645e50c8d80e512945ddcfb71e2b10bc7f | Triage

Sharing

General

Target

b40b88a714696986c7a3ff4bd86cb1645e50c8d80e512945ddcfb71e2b10bc7f
Size

24KB
Sample

221123-mqqcnaeg35
MD5

8552d57b2bcac7b80b7c3d15d1f4abfb
SHA1

b59da154ef1341f7ef6f2fd86e307261ae8b9810
SHA256

b40b88a714696986c7a3ff4bd86cb1645e50c8d80e512945ddcfb71e2b10bc7f
SHA512

b0c002f775a255dfc0463609e5b07364da5b19c6190c8a5eeb3c113ff9a07990bc7d9e24c217af44f65695732f1da51294aa54e1d109afd93edb0db21d162ff1
SSDEEP

384:GLfw1wdTQTls4Ynp36Ky+do4kfaqCKy1Xs2mU:GrGwdsTlV4K+dotaqCKEX

Score

8^/10

Malware Config

Targets

- Target
  
  b40b88a714696986c7a3ff4bd86cb1645e50c8d80e512945ddcfb71e2b10bc7f
- Size
  
  24KB
- MD5
  
  8552d57b2bcac7b80b7c3d15d1f4abfb
- SHA1
  
  b59da154ef1341f7ef6f2fd86e307261ae8b9810
- SHA256
  
  b40b88a714696986c7a3ff4bd86cb1645e50c8d80e512945ddcfb71e2b10bc7f
- SHA512
  
  b0c002f775a255dfc0463609e5b07364da5b19c6190c8a5eeb3c113ff9a07990bc7d9e24c217af44f65695732f1da51294aa54e1d109afd93edb0db21d162ff1
- SSDEEP
  
  384:GLfw1wdTQTls4Ynp36Ky+do4kfaqCKy1Xs2mU:GrGwdsTlV4K+dotaqCKEX
Score

8^/10
- Executes dropped EXE
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Install Root Certificate

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2