51302b05a1e4844fe8747bf05af1dce475f506997c70685ebb4333cab858cb5c | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0e0ac1fb77b485exe_JC.exe
Size

52KB
Sample

230713-ybv55sbe3v
MD5

0e0ac1fb77b485b3233baf4b2a351ced
SHA1

e4db517630c67ae331f2e425163686d28b3c2d56
SHA256

51302b05a1e4844fe8747bf05af1dce475f506997c70685ebb4333cab858cb5c
SHA512

6b7b64c4c2c952011f51e011415ad24b97eaf738ad4c1fde9aa1914fc74004add5e83d4d4d91665047d13ace8bda9530f7d8fd62ddc783b68474e10fe88a8863
SSDEEP

768:6Qz7yVEhs9+4OR7tOOtEvwDpjLHqPOYRmNxt5I5Id:6j+1NMOtEvwDpjr8ox8s

Score

7^/10

Malware Config

Targets

- Target
  
  0e0ac1fb77b485exe_JC.exe
- Size
  
  52KB
- MD5
  
  0e0ac1fb77b485b3233baf4b2a351ced
- SHA1
  
  e4db517630c67ae331f2e425163686d28b3c2d56
- SHA256
  
  51302b05a1e4844fe8747bf05af1dce475f506997c70685ebb4333cab858cb5c
- SHA512
  
  6b7b64c4c2c952011f51e011415ad24b97eaf738ad4c1fde9aa1914fc74004add5e83d4d4d91665047d13ace8bda9530f7d8fd62ddc783b68474e10fe88a8863
- SSDEEP
  
  768:6Qz7yVEhs9+4OR7tOOtEvwDpjLHqPOYRmNxt5I5Id:6j+1NMOtEvwDpjr8ox8s
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Install Root Certificate

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2