Overview

overview

7

Static

static

3

76bd458210...1b.exe

windows7-x64

7

76bd458210...1b.exe

windows10-2004-x64

7

$0/questscan.dll

windows7-x64

1

$0/questscan.dll

windows10-2004-x64

1

$0/questscan.exe

windows7-x64

3

$0/questscan.exe

windows10-2004-x64

3

$0/uninstall.exe

windows7-x64

7

$0/uninstall.exe

windows10-2004-x64

7

$PLUGINSDI...ns.dll

windows7-x64

3

$PLUGINSDI...ns.dll

windows10-2004-x64

3

$PLUGINSDI...em.dll

windows7-x64

3

$PLUGINSDI...em.dll

windows10-2004-x64

3

$PLUGINSDI...ns.dll

windows7-x64

3

$PLUGINSDI...ns.dll

windows10-2004-x64

3

$PLUGINSDI...em.dll

windows7-x64

3

$PLUGINSDI...em.dll

windows10-2004-x64

3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    76bd45821070f16fcde98d528035b31b

  • Size

    1.1MB

  • Sample

    240126-h87mfaaabk

  • MD5

    76bd45821070f16fcde98d528035b31b

  • SHA1

    e296440f5d66bfcc15128a2ea82a815843a0a34c

  • SHA256

    843d237f0cd791655b7e99607a0af9af71aefd12e9f2240e6abe21689918e4c1

  • SHA512

    baaa1d97cf33aadba781999489032da5a16cd9fce4880b856f7c4bcbc94f29a296a80ccce7649285f991e4932437a1601f7e43f62dbfc8dc0c60829c271c34b3

  • SSDEEP

    24576:pIJIjKejE5DYLMM3flJrCra+WeAH4mYkxWs0AdzsaxAcBY:vWejTMBhTZsndzseBY

Score
7/10

Malware Config

Targets

    • Target

      76bd45821070f16fcde98d528035b31b

    • Size

      1.1MB

    • MD5

      76bd45821070f16fcde98d528035b31b

    • SHA1

      e296440f5d66bfcc15128a2ea82a815843a0a34c

    • SHA256

      843d237f0cd791655b7e99607a0af9af71aefd12e9f2240e6abe21689918e4c1

    • SHA512

      baaa1d97cf33aadba781999489032da5a16cd9fce4880b856f7c4bcbc94f29a296a80ccce7649285f991e4932437a1601f7e43f62dbfc8dc0c60829c271c34b3

    • SSDEEP

      24576:pIJIjKejE5DYLMM3flJrCra+WeAH4mYkxWs0AdzsaxAcBY:vWejTMBhTZsndzseBY

    Score
    7/10

    • Loads dropped DLL

    behavioral1behavioral2

    • Target

      $0/questscan.dll

    • Size

      988KB

    • MD5

      38c39c0b82ec94fdbfec03e17b711edf

    • SHA1

      f5d5ae25004c5393b9027f9157bc53827d9da406

    • SHA256

      207cd0dbf61ef9adfc9dd42a237ed3f3a38f410afabcfd8af46ccbcf65dab56e

    • SHA512

      6002c99423125b0d57ce9c05301db212aa7a90a36eef42426db7e1876afa1438392e9a7a3cab7f84bca1a84f707410e0dd2776c8b1aaf1e428eb4d05501dbe2a

    • SSDEEP

      24576:Iunu5hrbguUVmMeN1nGFblJBLHqzdXcC/C5n044QCrAhikQ:NIhrb+IMysLKpXch5044shikQ

    Score
    1/10
    behavioral3behavioral4

    • Target

      $0/questscan.exe

    • Size

      36KB

    • MD5

      fd4bf3c03896afecad0398c8b553e788

    • SHA1

      40d91a9473544ff9a9c7502434be82cb54e793d1

    • SHA256

      d51295965f579890b03219f439ced186c6ad25fd6b8ab08c2dd622b2b298c466

    • SHA512

      a2f9217de88beae3634d6eff88ffccd97b4598d76b3a414c63275d1f4af210e8836f17ab770178c8757e29c51e0190eaf94a4493a4b0cf29f34d0457b35af49e

    • SSDEEP

      384:IGEghrtOa5kreK37dXR5HDFDJz9nIABRebGSUp5c44VjiGESIRjlTHjN6/WvilE:LEghOdXRD99nFyCLpa44VjrEBXtBal

    Score
    3/10
    behavioral5behavioral6

    • Target

      $0/uninstall.exe

    • Size

      78KB

    • MD5

      c2989a47511be610dcab03e417c4eadb

    • SHA1

      d2dff3c53d2e9c0fee596b2d159a74d0445fa5ce

    • SHA256

      5f07e69c4de4065cd97f2dcd421f993fffaa4fcfa08853f7fa21005e0d591b9e

    • SHA512

      9a7f0668e05dbf0c54a537f908d740cef67c3865dfb12322e50cab4f7c0e9c9e8d7f7b25cd95786f7298443e974b99aab958a793308786431a76c0c48728cac8

    • SSDEEP

      1536:PEkjY1zy214Qay0DGkJ7qAELVigJWcp3gJVF3k4GaC2/Di:8kjAJ4dDGkJ+AI0UGJTnGa5/e

    Score
    7/10

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral7behavioral8

    • Target

      $PLUGINSDIR/InstallOptions.dll

    • Size

      13KB

    • MD5

      d765c492c21689e3d9d61634371fd861

    • SHA1

      ac200933671ae52c9d5544d0e2e8e9144d286c83

    • SHA256

      551e6042dd494ea01549555ffc194ab9729da09058ec714eb368dd06642c9bbc

    • SHA512

      9919a9e848c8f1e26c75d0d29207571e4b86a4140bd554743d2c1f8bd7f386fe4919345b163d89a5d907fb165e435ba0ac5f6b1101713636141f156a420e2e0f

    • SSDEEP

      192:9B6RvrfvOuJQDghBy/X7QKq3TLGciZJf0EzWzMnz6WoF1dBs:v6RrviWaX7eiZJ7nz6bB

    Score
    3/10
    behavioral10behavioral9

    • Target

      $PLUGINSDIR/System.dll

    • Size

      10KB

    • MD5

      fe24766ba314f620d57d0cf7339103c0

    • SHA1

      8641545f03f03ff07485d6ec4d7b41cbb898c269

    • SHA256

      802ef71440f662f456bed6283a5ff78066af016897fe6bfd29cac6edc2967bbd

    • SHA512

      60d36959895cebf29c4e7713e6d414980139c7aa4ed1c8c96fefb672c1263af0ce909fb409534355895649c0e8056635112efb0da2ba05694446aec2ca77e2e3

    • SSDEEP

      192:rO6dJA/ruAFEiUdWWE6hE5RYUdJfbub1aMBgMO:yKAFERdlxhGRYUzqZaMB

    Score
    3/10
    behavioral11behavioral12

    • Target

      $PLUGINSDIR/InstallOptions.dll

    • Size

      13KB

    • MD5

      d765c492c21689e3d9d61634371fd861

    • SHA1

      ac200933671ae52c9d5544d0e2e8e9144d286c83

    • SHA256

      551e6042dd494ea01549555ffc194ab9729da09058ec714eb368dd06642c9bbc

    • SHA512

      9919a9e848c8f1e26c75d0d29207571e4b86a4140bd554743d2c1f8bd7f386fe4919345b163d89a5d907fb165e435ba0ac5f6b1101713636141f156a420e2e0f

    • SSDEEP

      192:9B6RvrfvOuJQDghBy/X7QKq3TLGciZJf0EzWzMnz6WoF1dBs:v6RrviWaX7eiZJ7nz6bB

    Score
    3/10
    behavioral13behavioral14

    • Target

      $PLUGINSDIR/System.dll

    • Size

      10KB

    • MD5

      fe24766ba314f620d57d0cf7339103c0

    • SHA1

      8641545f03f03ff07485d6ec4d7b41cbb898c269

    • SHA256

      802ef71440f662f456bed6283a5ff78066af016897fe6bfd29cac6edc2967bbd

    • SHA512

      60d36959895cebf29c4e7713e6d414980139c7aa4ed1c8c96fefb672c1263af0ce909fb409534355895649c0e8056635112efb0da2ba05694446aec2ca77e2e3

    • SSDEEP

      192:rO6dJA/ruAFEiUdWWE6hE5RYUdJfbub1aMBgMO:yKAFERdlxhGRYUzqZaMB

    Score
    3/10
    behavioral15behavioral16

MITRE ATT&CK Enterprise v15

Tasks