4b736af41813d7bc972a243249484c081cb71fed3209472bf146767d3bc9e631 | Triage

Sharing

General

Target

5ffa0ff03f7f28_JC.exe
Size

51KB
Sample

230716-lm4v7sdh35
MD5

5ffa0ff03f7f280d035234752e93f96c
SHA1

1cb4921ff12ecc80252590bba695630e4bffbb07
SHA256

4b736af41813d7bc972a243249484c081cb71fed3209472bf146767d3bc9e631
SHA512

4ec5f7dbf601dc84f6fe53206dbaba12ce57810690b677843f262f60965ceb7120b4edbac6ea64a4ec6313d5d88cb76845e21c76756ba31b1dba6ca7d084313f
SSDEEP

768:6Qz7yVEhs9+4OR7tOOtEvwDpjLHqPOYRmNxt8OG:6j+1NMOtEvwDpjr8oxmp

Score

7^/10

Malware Config

Targets

- Target
  
  5ffa0ff03f7f28_JC.exe
- Size
  
  51KB
- MD5
  
  5ffa0ff03f7f280d035234752e93f96c
- SHA1
  
  1cb4921ff12ecc80252590bba695630e4bffbb07
- SHA256
  
  4b736af41813d7bc972a243249484c081cb71fed3209472bf146767d3bc9e631
- SHA512
  
  4ec5f7dbf601dc84f6fe53206dbaba12ce57810690b677843f262f60965ceb7120b4edbac6ea64a4ec6313d5d88cb76845e21c76756ba31b1dba6ca7d084313f
- SSDEEP
  
  768:6Qz7yVEhs9+4OR7tOOtEvwDpjLHqPOYRmNxt8OG:6j+1NMOtEvwDpjr8oxmp
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Install Root Certificate

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2