2c962e6563821a20338e87db5337e79182eeda35aa14fd105ced67b3d8e03676 | Triage

Sharing

General

Target

b1236599fb6fed_JC.exe
Size

36KB
Sample

230718-pqtq7aah7y
MD5

b1236599fb6fedf08c4430a3b0dcf506
SHA1

2809c12a4fa758d628182e88ecbd7c4a897d33f2
SHA256

2c962e6563821a20338e87db5337e79182eeda35aa14fd105ced67b3d8e03676
SHA512

ce5fe074ee0f76fdf164245b9712f1277b9563d890663277fda3f2f0f777e7bfb2309d28567b4c7a54bcf9627f81f300c636f9c93d7f14d92355ae61a10f124b
SSDEEP

384:bgX4uGLLQRcsdeQ7/nQu63Ag7YmecFanrlwfjDUkKDfWf6XT+72kmGYjBa4GY4:bgX4zYcgTEu6QOaryfjqDlC7rYE4m

Score

7^/10

Malware Config

Targets

- Target
  
  b1236599fb6fed_JC.exe
- Size
  
  36KB
- MD5
  
  b1236599fb6fedf08c4430a3b0dcf506
- SHA1
  
  2809c12a4fa758d628182e88ecbd7c4a897d33f2
- SHA256
  
  2c962e6563821a20338e87db5337e79182eeda35aa14fd105ced67b3d8e03676
- SHA512
  
  ce5fe074ee0f76fdf164245b9712f1277b9563d890663277fda3f2f0f777e7bfb2309d28567b4c7a54bcf9627f81f300c636f9c93d7f14d92355ae61a10f124b
- SSDEEP
  
  384:bgX4uGLLQRcsdeQ7/nQu63Ag7YmecFanrlwfjDUkKDfWf6XT+72kmGYjBa4GY4:bgX4zYcgTEu6QOaryfjqDlC7rYE4m
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2