f804a8faaefc4c0831246c66d6acca582fd93f0049278787477c235dee98d559 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

58aadef0faca44_JC.exe
Size

39KB
Sample

230716-j5r81sec81
MD5

58aadef0faca440417d2c005c455a419
SHA1

bd8f8110abf6ca94145180e4702b9f73be56e51b
SHA256

f804a8faaefc4c0831246c66d6acca582fd93f0049278787477c235dee98d559
SHA512

efd8046c19036742cb54abbbae3d0b4d62fd741e87e5d871e0be27d2f3f9a0df47bc3f2c1a7f92bf67a1fcd41bbe62c2e6a366fd8b88209ba2e6059dcc32aa72
SSDEEP

768:X6LsoEEeegiZPvEhHSG+gp/QtOOtEvwDpjBaaUfR+eteh5zE:X6QFElP6n+gJQMOtEvwDpjBkfvtefI

Score

7^/10

Malware Config

Targets

- Target
  
  58aadef0faca44_JC.exe
- Size
  
  39KB
- MD5
  
  58aadef0faca440417d2c005c455a419
- SHA1
  
  bd8f8110abf6ca94145180e4702b9f73be56e51b
- SHA256
  
  f804a8faaefc4c0831246c66d6acca582fd93f0049278787477c235dee98d559
- SHA512
  
  efd8046c19036742cb54abbbae3d0b4d62fd741e87e5d871e0be27d2f3f9a0df47bc3f2c1a7f92bf67a1fcd41bbe62c2e6a366fd8b88209ba2e6059dcc32aa72
- SSDEEP
  
  768:X6LsoEEeegiZPvEhHSG+gp/QtOOtEvwDpjBaaUfR+eteh5zE:X6QFElP6n+gJQMOtEvwDpjBkfvtefI
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2