f014ff7e29cde690d19f6c89d59b711457c0b5261c6cc5c438935fb0828456a7 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b215dd689af448_JC.exe
Size

274KB
Sample

230718-pxewlsac29
MD5

b215dd689af448523f6ce2c4499eb1fb
SHA1

2fcfcfa4b7e0343d71b634c680fd6f548a6225d8
SHA256

f014ff7e29cde690d19f6c89d59b711457c0b5261c6cc5c438935fb0828456a7
SHA512

30005a533f728613787d6bea4b825f0c63b73f25201b166a4c5a8db788cd028bf4a84a1857af5655ae82b0450818d2b69e862d90fa03a8d38acdd90bdf881971
SSDEEP

6144:2YvZ6brUj+bvqHXSpWr2Kqz83Oad3Jg4PlPDIQ+KLzDDg:2YvEbrUjp3SpWggd3JBPlPDIQ3g

Score

7^/10

Malware Config

Targets

- Target
  
  b215dd689af448_JC.exe
- Size
  
  274KB
- MD5
  
  b215dd689af448523f6ce2c4499eb1fb
- SHA1
  
  2fcfcfa4b7e0343d71b634c680fd6f548a6225d8
- SHA256
  
  f014ff7e29cde690d19f6c89d59b711457c0b5261c6cc5c438935fb0828456a7
- SHA512
  
  30005a533f728613787d6bea4b825f0c63b73f25201b166a4c5a8db788cd028bf4a84a1857af5655ae82b0450818d2b69e862d90fa03a8d38acdd90bdf881971
- SSDEEP
  
  6144:2YvZ6brUj+bvqHXSpWr2Kqz83Oad3Jg4PlPDIQ+KLzDDg:2YvEbrUjp3SpWggd3JBPlPDIQ3g
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2