70315a67e79a2421eac2c7c7e57a02dadd4ba47856d8e83d4e022a341ccd40ee | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b8c601d5ec095e_JC.exe
Size

39KB
Sample

230718-ra17faah98
MD5

b8c601d5ec095e6e70f761070fb594d2
SHA1

5db9bbb99ad6203ca8a0321e8bb2fbd3c967ab89
SHA256

70315a67e79a2421eac2c7c7e57a02dadd4ba47856d8e83d4e022a341ccd40ee
SHA512

3ac2bf6939cf36308004be10cbbeb613ad8f92255c228b7117fbc8f1d3ef58c68d35ddb90bb0666f20cb25e7a41bddd16278cd3066f2e2a0944e9629cb1271b4
SSDEEP

768:X6LsoEEeegiZPvEhHSG+gp/QtOOtEvwDpjBaaUfR+eteh5zq:X6QFElP6n+gJQMOtEvwDpjBkfvtefu

Score

7^/10

Malware Config

Targets

- Target
  
  b8c601d5ec095e_JC.exe
- Size
  
  39KB
- MD5
  
  b8c601d5ec095e6e70f761070fb594d2
- SHA1
  
  5db9bbb99ad6203ca8a0321e8bb2fbd3c967ab89
- SHA256
  
  70315a67e79a2421eac2c7c7e57a02dadd4ba47856d8e83d4e022a341ccd40ee
- SHA512
  
  3ac2bf6939cf36308004be10cbbeb613ad8f92255c228b7117fbc8f1d3ef58c68d35ddb90bb0666f20cb25e7a41bddd16278cd3066f2e2a0944e9629cb1271b4
- SSDEEP
  
  768:X6LsoEEeegiZPvEhHSG+gp/QtOOtEvwDpjBaaUfR+eteh5zq:X6QFElP6n+gJQMOtEvwDpjBkfvtefu
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2