7a3fb2b949b791dafaf252d0c5a29a59af56a8636617f13a42737645cf84f035 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

f72fb125df1874exe_JC.exe
Size

102KB
Sample

230719-tdhklshe76
MD5

f72fb125df187463c9a145a9b5d7fc96
SHA1

aeb1e805ef124a1fde05b6d2645a024f024fc615
SHA256

7a3fb2b949b791dafaf252d0c5a29a59af56a8636617f13a42737645cf84f035
SHA512

10940ed8657ae7eb8157137a6efe4d5c523222c4c23e72729feaaf2f872e1b061fe27ff3738a3fd5b68acc10a58362446449d87f3f6826e41bc34ed5ea49b676
SSDEEP

768:xQz7yVEhs9+4uR1bytOOtEvwDpjWfbZ7uyA36S7MpxRiWCCyDLKASkjolKh:xj+VGMOtEvwDpjubwQEIie8+ASk9h

Score

7^/10

Malware Config

Targets

- Target
  
  f72fb125df1874exe_JC.exe
- Size
  
  102KB
- MD5
  
  f72fb125df187463c9a145a9b5d7fc96
- SHA1
  
  aeb1e805ef124a1fde05b6d2645a024f024fc615
- SHA256
  
  7a3fb2b949b791dafaf252d0c5a29a59af56a8636617f13a42737645cf84f035
- SHA512
  
  10940ed8657ae7eb8157137a6efe4d5c523222c4c23e72729feaaf2f872e1b061fe27ff3738a3fd5b68acc10a58362446449d87f3f6826e41bc34ed5ea49b676
- SSDEEP
  
  768:xQz7yVEhs9+4uR1bytOOtEvwDpjWfbZ7uyA36S7MpxRiWCCyDLKASkjolKh:xj+VGMOtEvwDpjubwQEIie8+ASk9h
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Install Root Certificate

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2