ad172d3780c8340a3cdd54b7ad00710a4265860dfafefd213422dd80e5bb1804 | Triage

Sharing

General

Target

5ee2d257a587e3_JC.exe
Size

58KB
Sample

230716-lfjlpadg76
MD5

5ee2d257a587e3da382122e649ffc62f
SHA1

316ad388866336f40286415f2a89cba94048233a
SHA256

ad172d3780c8340a3cdd54b7ad00710a4265860dfafefd213422dd80e5bb1804
SHA512

cd74723fdbfbb4dd1cc0ee4cb7b9599418899df1fdbd3fa95bd7a0fdd594b9087ce07c11853796d0478436b975c6e617f28b7492fc4de4d952f0090efa247fa8
SSDEEP

768:79inqyNR/QtOOtEvwDpjBK/iVTab3GRuv3VylcbgMv6zcN81:79mqyNhQMOtEvwDpjBPY7xv3g1MvkO81

Score

7^/10

Malware Config

Targets

- Target
  
  5ee2d257a587e3_JC.exe
- Size
  
  58KB
- MD5
  
  5ee2d257a587e3da382122e649ffc62f
- SHA1
  
  316ad388866336f40286415f2a89cba94048233a
- SHA256
  
  ad172d3780c8340a3cdd54b7ad00710a4265860dfafefd213422dd80e5bb1804
- SHA512
  
  cd74723fdbfbb4dd1cc0ee4cb7b9599418899df1fdbd3fa95bd7a0fdd594b9087ce07c11853796d0478436b975c6e617f28b7492fc4de4d952f0090efa247fa8
- SSDEEP
  
  768:79inqyNR/QtOOtEvwDpjBK/iVTab3GRuv3VylcbgMv6zcN81:79mqyNhQMOtEvwDpjBPY7xv3g1MvkO81
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2