bbdb5a05d67e63146a00f5f90ee39ffdf05a21fe1e2d71492b2795883522d28d | Triage

Sharing

Copy URL Twitter E-mail

General

Target

00a009c67d5aa0exe_JC.exe
Size

42KB
Sample

230713-vzlptsad6z
MD5

00a009c67d5aa070f4b7a2f816fe2acd
SHA1

8913f3f46e5af3e1b92ce32f79fa20cadbe6acd2
SHA256

bbdb5a05d67e63146a00f5f90ee39ffdf05a21fe1e2d71492b2795883522d28d
SHA512

b36c2f24dfa8e1754154bfd7be7701b9cc3aefc46dd83181294edff3c9f9766071bd330978d72f924e6b4abd21ded16a0e1c02c7d63e3752ca87496577f3ac8f
SSDEEP

768:X6LsoEEeegiZPvEhHSG+gp/QtOOtEvwDpjBaaEq1xGb3yj:X6QFElP6n+gJQMOtEvwDpjB0mGbM

Score

7^/10

Malware Config

Targets

- Target
  
  00a009c67d5aa0exe_JC.exe
- Size
  
  42KB
- MD5
  
  00a009c67d5aa070f4b7a2f816fe2acd
- SHA1
  
  8913f3f46e5af3e1b92ce32f79fa20cadbe6acd2
- SHA256
  
  bbdb5a05d67e63146a00f5f90ee39ffdf05a21fe1e2d71492b2795883522d28d
- SHA512
  
  b36c2f24dfa8e1754154bfd7be7701b9cc3aefc46dd83181294edff3c9f9766071bd330978d72f924e6b4abd21ded16a0e1c02c7d63e3752ca87496577f3ac8f
- SSDEEP
  
  768:X6LsoEEeegiZPvEhHSG+gp/QtOOtEvwDpjBaaEq1xGb3yj:X6QFElP6n+gJQMOtEvwDpjB0mGbM
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2