General

  • Target

    446238af08e44262b0c59c60ff0c910ef7c169ba48774c592daeddb30193b951

  • Size

    12KB

  • Sample

    240528-zqrxpsdb79

  • MD5

    451425304f3fe90ab4880b4ce3ca6a87

  • SHA1

    b4bc01096deb8a1d5ebe98ab7e3267ba8b04b557

  • SHA256

    446238af08e44262b0c59c60ff0c910ef7c169ba48774c592daeddb30193b951

  • SHA512

    afd4bd624e1fe543ccb857aa4e906e625bd8ee744759d4b86dd5e48523aae3442d3d02b620dcb3de153e00bbf433ca53990b48a04b0adc3b7660616120521207

  • SSDEEP

    384:6L7li/2zAkq2DcEQvdQcJKLTp/NK9xadj:k80MCQ9cdj

Score
7/10

Malware Config

Targets

    • Target

      446238af08e44262b0c59c60ff0c910ef7c169ba48774c592daeddb30193b951

    • Size

      12KB

    • MD5

      451425304f3fe90ab4880b4ce3ca6a87

    • SHA1

      b4bc01096deb8a1d5ebe98ab7e3267ba8b04b557

    • SHA256

      446238af08e44262b0c59c60ff0c910ef7c169ba48774c592daeddb30193b951

    • SHA512

      afd4bd624e1fe543ccb857aa4e906e625bd8ee744759d4b86dd5e48523aae3442d3d02b620dcb3de153e00bbf433ca53990b48a04b0adc3b7660616120521207

    • SSDEEP

      384:6L7li/2zAkq2DcEQvdQcJKLTp/NK9xadj:k80MCQ9cdj

    Score
    7/10
    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • Uses the VBS compiler for execution

MITRE ATT&CK Enterprise v15

Tasks