0600f0c29e7513b060c4634804b2a2ad7e636c8372f7ee927b9e20e72e2bc807 | Triage

Sharing

General

Target

0c74e4d7cb6903exe_JC.exe
Size

56KB
Sample

230713-x35cfsae47
MD5

0c74e4d7cb6903d817a084a866646ff4
SHA1

2963eb32f631c89573f52faf3ae78ae19b67dd2f
SHA256

0600f0c29e7513b060c4634804b2a2ad7e636c8372f7ee927b9e20e72e2bc807
SHA512

c9d87d6538ea493317f4169fbe7549ef36c3eac5c2c83d1cb5bcfe14a2c252abd26fb5ef7e8dbb60ea0da708bc0396346ff34592457963a4049dd67aa26e8f11
SSDEEP

768:6Qz7yVEhs9+4OR7tOOtEvwDpjLHqPOYRmNxt5I52kcIGYb:6j+1NMOtEvwDpjr8ox8UXYb

Score

7^/10

Malware Config

Targets

- Target
  
  0c74e4d7cb6903exe_JC.exe
- Size
  
  56KB
- MD5
  
  0c74e4d7cb6903d817a084a866646ff4
- SHA1
  
  2963eb32f631c89573f52faf3ae78ae19b67dd2f
- SHA256
  
  0600f0c29e7513b060c4634804b2a2ad7e636c8372f7ee927b9e20e72e2bc807
- SHA512
  
  c9d87d6538ea493317f4169fbe7549ef36c3eac5c2c83d1cb5bcfe14a2c252abd26fb5ef7e8dbb60ea0da708bc0396346ff34592457963a4049dd67aa26e8f11
- SSDEEP
  
  768:6Qz7yVEhs9+4OR7tOOtEvwDpjLHqPOYRmNxt5I52kcIGYb:6j+1NMOtEvwDpjr8ox8UXYb
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Install Root Certificate

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2