91903cf3280e5ce026509dad350037b4cf7226100b175ac85f4b411def86f73a | Triage

Sharing

Copy URL Twitter E-mail

General

Target

cc00044a8dd3d2_JC.exe
Size

123KB
Sample

230718-wcm5tach23
MD5

cc00044a8dd3d240a5c195b5bd9438bf
SHA1

e08266a3c9fe3f637591b19c7ca3b98423aa92d4
SHA256

91903cf3280e5ce026509dad350037b4cf7226100b175ac85f4b411def86f73a
SHA512

d7211b5ff75002b4c42256983cd010c247825ac35688d429c32abd7b1be81fbfc931eb7ab7dadbcdad2681e41036d0fad867ca271c0077810929e77ec8d561aa
SSDEEP

1536:vj+jsMQMOtEvwDpj5HwYYTjipvF2hBfIuBKLUYOVL:vCjsIOtEvwDpj5H9YvQd2x

Score

7^/10

Malware Config

Targets

- Target
  
  cc00044a8dd3d2_JC.exe
- Size
  
  123KB
- MD5
  
  cc00044a8dd3d240a5c195b5bd9438bf
- SHA1
  
  e08266a3c9fe3f637591b19c7ca3b98423aa92d4
- SHA256
  
  91903cf3280e5ce026509dad350037b4cf7226100b175ac85f4b411def86f73a
- SHA512
  
  d7211b5ff75002b4c42256983cd010c247825ac35688d429c32abd7b1be81fbfc931eb7ab7dadbcdad2681e41036d0fad867ca271c0077810929e77ec8d561aa
- SSDEEP
  
  1536:vj+jsMQMOtEvwDpj5HwYYTjipvF2hBfIuBKLUYOVL:vCjsIOtEvwDpj5H9YvQd2x
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Install Root Certificate

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2