0d4e9eb2facafc258c70af1c9f7bf8b0a8ab19d8c5e05ea7f72bf4437b85072a | Triage

Sharing

General

Target

bd89c49a4e7cd3_JC.exe
Size

86KB
Sample

230718-sdlrlabd49
MD5

bd89c49a4e7cd347d8c30d178e667467
SHA1

6efee8a686eae8d375bac76265b0354d24653891
SHA256

0d4e9eb2facafc258c70af1c9f7bf8b0a8ab19d8c5e05ea7f72bf4437b85072a
SHA512

dc4e9cc3fb9711a50f4b246a7480430a9dd4424da2afeac3d88e8d936ea7e6cdc90990c07b40906c9655766ccb9b320915238cafdf042accbf86c0cbd6d83354
SSDEEP

1536:vj+jsMQMOtEvwDpj5H8u8rBN6nqEZNieRpq:vCjsIOtEvwDpj5H8zP7

Score

7^/10

Malware Config

Targets

- Target
  
  bd89c49a4e7cd3_JC.exe
- Size
  
  86KB
- MD5
  
  bd89c49a4e7cd347d8c30d178e667467
- SHA1
  
  6efee8a686eae8d375bac76265b0354d24653891
- SHA256
  
  0d4e9eb2facafc258c70af1c9f7bf8b0a8ab19d8c5e05ea7f72bf4437b85072a
- SHA512
  
  dc4e9cc3fb9711a50f4b246a7480430a9dd4424da2afeac3d88e8d936ea7e6cdc90990c07b40906c9655766ccb9b320915238cafdf042accbf86c0cbd6d83354
- SSDEEP
  
  1536:vj+jsMQMOtEvwDpj5H8u8rBN6nqEZNieRpq:vCjsIOtEvwDpj5H8zP7
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Install Root Certificate

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2