a17b38aaaae6a424289facf5e413298184151b21a4819a62ee5c134f8026e9de | Triage

Submit
Reports

Overview

overview

8

Static

static

1

qpcdJ5.html

windows10-2004-x64

8

Sharing

General

Target

qpcdJ5
Size

510B
Sample

241012-x2jdlaxbqd
MD5

34dfe83879df859819b3dc1690b2c298
SHA1

98ca2a16b44d8a9f047a4a4c377f3d8b11b74430
SHA256

a17b38aaaae6a424289facf5e413298184151b21a4819a62ee5c134f8026e9de
SHA512

de7864202c55038fd05f6be54ad1ffdb75ea721c18d93c2c942b9da398b7f20358d9d0e97d1afde7a145d9b6c54c52a7f4cd8a04285dd3eb34b2f21bdcf915c1

Score

8^/10

defense_evasion discovery persistence

Static task

static1

Behavioral task

behavioral1

Sample

qpcdJ5.html

Resource

win10v2004-20241007-en

defense_evasion discovery persistence

windows10-2004-x64

29 signatures

1800 seconds

Malware Config

Targets

- Target
  
  qpcdJ5
- Size
  
  510B
- MD5
  
  34dfe83879df859819b3dc1690b2c298
- SHA1
  
  98ca2a16b44d8a9f047a4a4c377f3d8b11b74430
- SHA256
  
  a17b38aaaae6a424289facf5e413298184151b21a4819a62ee5c134f8026e9de
- SHA512
  
  de7864202c55038fd05f6be54ad1ffdb75ea721c18d93c2c942b9da398b7f20358d9d0e97d1afde7a145d9b6c54c52a7f4cd8a04285dd3eb34b2f21bdcf915c1
Score

8^/10

defense_evasion discovery persistence
- Downloads MZ/PE file
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
- Drops file in System32 directory
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Subvert Trust Controls

SIP and Trust Provider Hijacking

Credential Access

Discovery

Browser Information Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

defense_evasiondiscoverypersistence

© 2018-2025

Terms | Privacy