57426b37a3b8250dba97c5ca64d4089733fece5aff2c1344d0ca93e5c1049937 | Triage

Sharing

General

Target

63903290d8beb1_JC.exe
Size

42KB
Sample

230716-l549paea84
MD5

63903290d8beb123e1e965d1cbfc8ad7
SHA1

ed1cf615263eb1fddd3a33854da86b1bf96cf836
SHA256

57426b37a3b8250dba97c5ca64d4089733fece5aff2c1344d0ca93e5c1049937
SHA512

97bc0a5e2e7603fc3477958d1f5fb4c04f543d4094d8e7da857f732f6611ca88802845a8d080419c50acd7eb9ad0f6b47a29fc4b36a22d34717c5679ea512305
SSDEEP

384:e/4wODQkzonAYsju5N/surDQtOOtEvwDpjqIGROqS/W/rJ+xLrs7cwcx4M3F:79inqyNR/QtOOtEvwDpjBK/rJ+Nw83F

Score

7^/10

Malware Config

Targets

- Target
  
  63903290d8beb1_JC.exe
- Size
  
  42KB
- MD5
  
  63903290d8beb123e1e965d1cbfc8ad7
- SHA1
  
  ed1cf615263eb1fddd3a33854da86b1bf96cf836
- SHA256
  
  57426b37a3b8250dba97c5ca64d4089733fece5aff2c1344d0ca93e5c1049937
- SHA512
  
  97bc0a5e2e7603fc3477958d1f5fb4c04f543d4094d8e7da857f732f6611ca88802845a8d080419c50acd7eb9ad0f6b47a29fc4b36a22d34717c5679ea512305
- SSDEEP
  
  384:e/4wODQkzonAYsju5N/surDQtOOtEvwDpjqIGROqS/W/rJ+xLrs7cwcx4M3F:79inqyNR/QtOOtEvwDpjBK/rJ+Nw83F
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2