ec0b65832244b20a3777976c35ef629ca6ad74e7b07167e064270253bcbbedc0 | Triage

Sharing

General

Target

Update.exe
Size

45KB
Sample

240302-qgdt2sdf81
MD5

656da1a6c155301cdd82ec2e0faefd7b
SHA1

03c556b95f7adbb6b32eb4a7d8d14fff0d3e3ed0
SHA256

ec0b65832244b20a3777976c35ef629ca6ad74e7b07167e064270253bcbbedc0
SHA512

222206e897813b4dad44070125e159379f95f8dcfd2c1f4e0a832b045a3b7de40afab4c6226a17a83c462f21b8f1841b237c2be9a9d081b054eaacf3166fa47e
SSDEEP

768:adhO/poiiUcjlJIn7onH9Xqk5nWEZ5SbTDa2WI7CPW5s:8w+jjgnMnH9XqcnW85SbTvWI0

Score

7^/10

Malware Config

Targets

- Target
  
  Update.exe
- Size
  
  45KB
- MD5
  
  656da1a6c155301cdd82ec2e0faefd7b
- SHA1
  
  03c556b95f7adbb6b32eb4a7d8d14fff0d3e3ed0
- SHA256
  
  ec0b65832244b20a3777976c35ef629ca6ad74e7b07167e064270253bcbbedc0
- SHA512
  
  222206e897813b4dad44070125e159379f95f8dcfd2c1f4e0a832b045a3b7de40afab4c6226a17a83c462f21b8f1841b237c2be9a9d081b054eaacf3166fa47e
- SSDEEP
  
  768:adhO/poiiUcjlJIn7onH9Xqk5nWEZ5SbTDa2WI7CPW5s:8w+jjgnMnH9XqcnW85SbTvWI0
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Scheduled Task/Job

Persistence

Scheduled Task/Job

Privilege Escalation

Scheduled Task/Job

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2