fc8c65b12abf5ea25a5658b344569f4589806431d619f3c9038d447c4a3f9d5b | Triage

Sharing

General

Target

89168da8c5ef4f_JC.exe
Size

83KB
Sample

230717-qvjmfscc25
MD5

89168da8c5ef4fe5f38ea700590ce79e
SHA1

82ac375e28887446fabe82a102b5ac17b6c04f38
SHA256

fc8c65b12abf5ea25a5658b344569f4589806431d619f3c9038d447c4a3f9d5b
SHA512

beb39febc4a50baaa2529c9395e7f06430025c8819c0034aa4c18d1703e41e7f3e0e0192e9c14926f09eae94e9594961d4f100e07e39c745cb43897639c725c2
SSDEEP

768:UEEmoQDj/xnMp+yptndwe/PWQtOOtEvwDpjIm8z2iaSIO/RvDQeduJHqqnzvNG1Q:ZzFbxmLPWQMOtEvwDpj386Sj/RsxQzE

Score

7^/10

Malware Config

Targets

- Target
  
  89168da8c5ef4f_JC.exe
- Size
  
  83KB
- MD5
  
  89168da8c5ef4fe5f38ea700590ce79e
- SHA1
  
  82ac375e28887446fabe82a102b5ac17b6c04f38
- SHA256
  
  fc8c65b12abf5ea25a5658b344569f4589806431d619f3c9038d447c4a3f9d5b
- SHA512
  
  beb39febc4a50baaa2529c9395e7f06430025c8819c0034aa4c18d1703e41e7f3e0e0192e9c14926f09eae94e9594961d4f100e07e39c745cb43897639c725c2
- SSDEEP
  
  768:UEEmoQDj/xnMp+yptndwe/PWQtOOtEvwDpjIm8z2iaSIO/RvDQeduJHqqnzvNG1Q:ZzFbxmLPWQMOtEvwDpj386Sj/RsxQzE
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Install Root Certificate

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2