dd0aad83860c0d6ede0533e60a100a3d6c783452f35c007652dcc418b6b143ec | Triage

Sharing

Copy URL Twitter E-mail

General

Target

48f97ec7fd32f2exeexe_JC.exe
Size

56KB
Sample

230715-p8z1xsbe4w
MD5

48f97ec7fd32f24649e5202199cef722
SHA1

ead28675f3a602790ccf1c06ebf8b11ab2f30b9a
SHA256

dd0aad83860c0d6ede0533e60a100a3d6c783452f35c007652dcc418b6b143ec
SHA512

a4a52f5a97d109fb79af0bb62139b19f1074a64259ec2a45b73d12b5341e60858769cd864be68b1da61a3247b1654e453abd4e8e5e7a68cd9529746cdf62125b
SSDEEP

768:6Qz7yVEhs9+4OR7tOOtEvwDpjLHqPOYRmNxt5I52FS:6j+1NMOtEvwDpjr8ox8UM

Score

7^/10

Malware Config

Targets

- Target
  
  48f97ec7fd32f2exeexe_JC.exe
- Size
  
  56KB
- MD5
  
  48f97ec7fd32f24649e5202199cef722
- SHA1
  
  ead28675f3a602790ccf1c06ebf8b11ab2f30b9a
- SHA256
  
  dd0aad83860c0d6ede0533e60a100a3d6c783452f35c007652dcc418b6b143ec
- SHA512
  
  a4a52f5a97d109fb79af0bb62139b19f1074a64259ec2a45b73d12b5341e60858769cd864be68b1da61a3247b1654e453abd4e8e5e7a68cd9529746cdf62125b
- SSDEEP
  
  768:6Qz7yVEhs9+4OR7tOOtEvwDpjLHqPOYRmNxt5I52FS:6j+1NMOtEvwDpjr8ox8UM
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Install Root Certificate

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2