c4bf4fec4db579b3f60f26779616f257eb329ff208700e3dc7668230d462ca59 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

02a8457872d8d4exe_JC.exe
Size

90KB
Sample

230713-whfmxsaf5t
MD5

02a8457872d8d49d32927bfb4f04416e
SHA1

0c5949a31f0ccf95c381721b7e6de2d990abeebb
SHA256

c4bf4fec4db579b3f60f26779616f257eb329ff208700e3dc7668230d462ca59
SHA512

db96696daf1ef19ce95a2dfff59cfa9affe53107fa896ba7698e5200ba482a537a9d7366de093ecd609fae36c38de121248ee2db7a6a46e5158b76875b9e3a71
SSDEEP

1536:V6QFElP6n+gMQMOtEvwDpjQGYQbNcqamvWLmW:V6a+pOtEvwDpjtA

Score

7^/10

Malware Config

Targets

- Target
  
  02a8457872d8d4exe_JC.exe
- Size
  
  90KB
- MD5
  
  02a8457872d8d49d32927bfb4f04416e
- SHA1
  
  0c5949a31f0ccf95c381721b7e6de2d990abeebb
- SHA256
  
  c4bf4fec4db579b3f60f26779616f257eb329ff208700e3dc7668230d462ca59
- SHA512
  
  db96696daf1ef19ce95a2dfff59cfa9affe53107fa896ba7698e5200ba482a537a9d7366de093ecd609fae36c38de121248ee2db7a6a46e5158b76875b9e3a71
- SSDEEP
  
  1536:V6QFElP6n+gMQMOtEvwDpjQGYQbNcqamvWLmW:V6a+pOtEvwDpjtA
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2