2bf44688feebdb3d2e7d762ecb4f14edbadf018b90ff979d64c00e90d5a4db93 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

cbbb66ba093ba8_JC.exe
Size

65KB
Sample

230718-wad45adf31
MD5

cbbb66ba093ba80e0d4d3d9ddd9a17a3
SHA1

00d7c06edd6bbae630dc6cadd15ff3979da753ae
SHA256

2bf44688feebdb3d2e7d762ecb4f14edbadf018b90ff979d64c00e90d5a4db93
SHA512

ee27e1ed29a1e617996e541f389fbc29a794d0cb84c3f73082797b1f389cd9c86617dbfccfb9ecd7be2fb4d4eed6fe074ab9a3ee4138047d0153b96ac9e0bfa8
SSDEEP

1536:ZzFbxmLPWQMOtEvwDpj386Sj/WprgJN6tZdOyJ36n9FQ/zx:ZVxkGOtEvwDpjcaAw

Score

7^/10

Malware Config

Targets

- Target
  
  cbbb66ba093ba8_JC.exe
- Size
  
  65KB
- MD5
  
  cbbb66ba093ba80e0d4d3d9ddd9a17a3
- SHA1
  
  00d7c06edd6bbae630dc6cadd15ff3979da753ae
- SHA256
  
  2bf44688feebdb3d2e7d762ecb4f14edbadf018b90ff979d64c00e90d5a4db93
- SHA512
  
  ee27e1ed29a1e617996e541f389fbc29a794d0cb84c3f73082797b1f389cd9c86617dbfccfb9ecd7be2fb4d4eed6fe074ab9a3ee4138047d0153b96ac9e0bfa8
- SSDEEP
  
  1536:ZzFbxmLPWQMOtEvwDpj386Sj/WprgJN6tZdOyJ36n9FQ/zx:ZVxkGOtEvwDpjcaAw
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Install Root Certificate

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2