71a48bd77b7e2e44dccaae12df707c40991ad0cc0fadd13af5489d6e3b764c37 | Triage

Sharing

General

Target

40f31a1df9ee9eexeexe_JC.exe
Size

86KB
Sample

230715-nzwfpsba6w
MD5

40f31a1df9ee9ef2e3a74b1edc7f5bad
SHA1

3b1ff5fb9ae270e6968011d2ed62e4e6a0b78140
SHA256

71a48bd77b7e2e44dccaae12df707c40991ad0cc0fadd13af5489d6e3b764c37
SHA512

d678b4eeba5b80b278e145ffd6b508b22f839a999a331d3ba72e71536254519d6fe298e590e32da46f3f931465ad9ef03515951fb8a45489e986a6b378741230
SSDEEP

1536:vj+jsMQMOtEvwDpj5H8u8rBN6nqEZNieRpfy:vCjsIOtEvwDpj5H8zP7

Score

7^/10

Malware Config

Targets

- Target
  
  40f31a1df9ee9eexeexe_JC.exe
- Size
  
  86KB
- MD5
  
  40f31a1df9ee9ef2e3a74b1edc7f5bad
- SHA1
  
  3b1ff5fb9ae270e6968011d2ed62e4e6a0b78140
- SHA256
  
  71a48bd77b7e2e44dccaae12df707c40991ad0cc0fadd13af5489d6e3b764c37
- SHA512
  
  d678b4eeba5b80b278e145ffd6b508b22f839a999a331d3ba72e71536254519d6fe298e590e32da46f3f931465ad9ef03515951fb8a45489e986a6b378741230
- SSDEEP
  
  1536:vj+jsMQMOtEvwDpj5H8u8rBN6nqEZNieRpfy:vCjsIOtEvwDpj5H8zP7
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Install Root Certificate

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2