14ca4d7f284c6e7371486ce32c4c767ef0412720e585cda65c02d14627ca78ab | Triage

Sharing

General

Target

40fc98a981dee712b05dd3c04f558cc1
Size

356KB
Sample

240104-qq3vjahaek
MD5

40fc98a981dee712b05dd3c04f558cc1
SHA1

2b965baffcd775fb5c715b49e8d7c1d61bd73f9b
SHA256

14ca4d7f284c6e7371486ce32c4c767ef0412720e585cda65c02d14627ca78ab
SHA512

d9c534b709099bcdc82906c359453a419fb354c9482cdd36f5d055fe16601bb6f7bac8110794a783d99bdd46e8585ff608cd8587eff8ae9463556b3bdfc21f27
SSDEEP

6144:THgHbI2mUvMEmL+6zuW0Hc4sARaQb5BlqcrJj0HqJ65Vkm8Fg1K:TAH3mUv4q7WQcgaQbz0AjgggD8Fg1K

Score

7^/10

Malware Config

Targets

- Target
  
  40fc98a981dee712b05dd3c04f558cc1
- Size
  
  356KB
- MD5
  
  40fc98a981dee712b05dd3c04f558cc1
- SHA1
  
  2b965baffcd775fb5c715b49e8d7c1d61bd73f9b
- SHA256
  
  14ca4d7f284c6e7371486ce32c4c767ef0412720e585cda65c02d14627ca78ab
- SHA512
  
  d9c534b709099bcdc82906c359453a419fb354c9482cdd36f5d055fe16601bb6f7bac8110794a783d99bdd46e8585ff608cd8587eff8ae9463556b3bdfc21f27
- SSDEEP
  
  6144:THgHbI2mUvMEmL+6zuW0Hc4sARaQb5BlqcrJj0HqJ65Vkm8Fg1K:TAH3mUv4q7WQcgaQbz0AjgggD8Fg1K
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Remote System Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2