3b0b86c4d46001d98b50d2deeb89e20f8bfb469d801c18cbd4b543c51067f446 | Triage

Sharing

General

Target

NA_NA_157f9e4c102fe5exeexe_JC.exe
Size

81KB
Sample

230723-ttbf8seh88
MD5

157f9e4c102fe5e113fff591c1ee5057
SHA1

04e07cecaeccef99174bb4893b89a70537c9f541
SHA256

3b0b86c4d46001d98b50d2deeb89e20f8bfb469d801c18cbd4b543c51067f446
SHA512

26d919ae40cd0e62c36835e9b8eca2acfe612114d80c9a43e5e8b17fc8544e914bf5741b6b68de6767e60c6df871bc1f171d87c835ae1e7c58b5ea06e9e09502
SSDEEP

768:UEEmoQDj/xnMp+yptndwe/PWQtOOtEvwDpjIm8z2iaSIO/RvDQeduJHqqnzvNG1I:ZzFbxmLPWQMOtEvwDpj386Sj/RsxQzc

Score

7^/10

Malware Config

Targets

- Target
  
  NA_NA_157f9e4c102fe5exeexe_JC.exe
- Size
  
  81KB
- MD5
  
  157f9e4c102fe5e113fff591c1ee5057
- SHA1
  
  04e07cecaeccef99174bb4893b89a70537c9f541
- SHA256
  
  3b0b86c4d46001d98b50d2deeb89e20f8bfb469d801c18cbd4b543c51067f446
- SHA512
  
  26d919ae40cd0e62c36835e9b8eca2acfe612114d80c9a43e5e8b17fc8544e914bf5741b6b68de6767e60c6df871bc1f171d87c835ae1e7c58b5ea06e9e09502
- SSDEEP
  
  768:UEEmoQDj/xnMp+yptndwe/PWQtOOtEvwDpjIm8z2iaSIO/RvDQeduJHqqnzvNG1I:ZzFbxmLPWQMOtEvwDpj386Sj/RsxQzc
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2