Overview

overview

7

Static

static

7

6ba13415733431_JC.exe

windows7-x64

7

6ba13415733431_JC.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    6ba13415733431_JC.exe

  • Size

    89KB

  • Sample

    230716-pg9q2sff2y

  • MD5

    6ba134157334310c0db20dfceb017286

  • SHA1

    6c1d06ba03a9962f7312aadab8bf51a27a438eed

  • SHA256

    b434c9691153d340759f73468977348f0aab962883aa8196a609fb9a57b899a3

  • SHA512

    aef753ab7230b9279fb58cac038db0d239f877264e63763d3182cb5bc0fbb48c6a05e19d3652e50056a7fc9b1342ce47c4e6d1be84a5aca18b76317226007a4f

  • SSDEEP

    1536:qkmnpomddpMOtEvwDpjJGYQbN/PKwNgpMx77:AnBdOOtEvwDpj6z7

Score
7/10
upx

Malware Config

Targets

    • Target

      6ba13415733431_JC.exe

    • Size

      89KB

    • MD5

      6ba134157334310c0db20dfceb017286

    • SHA1

      6c1d06ba03a9962f7312aadab8bf51a27a438eed

    • SHA256

      b434c9691153d340759f73468977348f0aab962883aa8196a609fb9a57b899a3

    • SHA512

      aef753ab7230b9279fb58cac038db0d239f877264e63763d3182cb5bc0fbb48c6a05e19d3652e50056a7fc9b1342ce47c4e6d1be84a5aca18b76317226007a4f

    • SSDEEP

      1536:qkmnpomddpMOtEvwDpjJGYQbN/PKwNgpMx77:AnBdOOtEvwDpj6z7

    Score
    7/10
    upx

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks