e3b65239f2dc9f608924a93e95815977f6e6168362c2e5a63c725f3163f1ed38 | Triage

Sharing

General

Target

1cb5c12577396aexe_JC.exe
Size

28KB
Sample

230714-qavtzseh5y
MD5

1cb5c12577396a8dadfe8c9edfbe8733
SHA1

0b5d5191f5196bdcaf475d62d463f0867ab90873
SHA256

e3b65239f2dc9f608924a93e95815977f6e6168362c2e5a63c725f3163f1ed38
SHA512

e6426e3addadf7d0fca43074a4ce0f8f5fea6c8b702cae8fe0d39ebac7486987da98b4b7035306d647761f273f0486b405bf69c8731b09d843b6b4c001dcb191
SSDEEP

384:bA74uGLLQRcsdeQ72ngEr4K7YmE8j60nrlwfjDUZ0psObBs:bA74zYcgT/Ekd0ryfjems

Score

7^/10

Malware Config

Targets

- Target
  
  1cb5c12577396aexe_JC.exe
- Size
  
  28KB
- MD5
  
  1cb5c12577396a8dadfe8c9edfbe8733
- SHA1
  
  0b5d5191f5196bdcaf475d62d463f0867ab90873
- SHA256
  
  e3b65239f2dc9f608924a93e95815977f6e6168362c2e5a63c725f3163f1ed38
- SHA512
  
  e6426e3addadf7d0fca43074a4ce0f8f5fea6c8b702cae8fe0d39ebac7486987da98b4b7035306d647761f273f0486b405bf69c8731b09d843b6b4c001dcb191
- SSDEEP
  
  384:bA74uGLLQRcsdeQ72ngEr4K7YmE8j60nrlwfjDUZ0psObBs:bA74zYcgT/Ekd0ryfjems
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2