398e11e41cb7415cbbfb79bd47be8dfab34699897061076d18ab633ba403b39b | Triage

Sharing

Copy URL Twitter E-mail

General

Target

NA_NA_1ca9fd6d1782ddexeexe_JC.exe
Size

280KB
Sample

230723-v5brtafh8w
MD5

1ca9fd6d1782dd240f32b121b947065e
SHA1

2ad6ba1f1881f8d83f197549f43ee56c1311f57f
SHA256

398e11e41cb7415cbbfb79bd47be8dfab34699897061076d18ab633ba403b39b
SHA512

9e61c5d40263c34f5cb5a0869c9dde1f5c05aae391c5a5a2071145314d5ea27ec788e3b40b0b0842d79febeb8d99863cf8fd6e941b706a2d872cc4fd5881a905
SSDEEP

6144:GTz+WrPFZvTXb4RyW42vFlOloh2E+7pYUozDK:GTBPFV0RyWl3h2E+7pl

Score

7^/10

Malware Config

Targets

- Target
  
  NA_NA_1ca9fd6d1782ddexeexe_JC.exe
- Size
  
  280KB
- MD5
  
  1ca9fd6d1782dd240f32b121b947065e
- SHA1
  
  2ad6ba1f1881f8d83f197549f43ee56c1311f57f
- SHA256
  
  398e11e41cb7415cbbfb79bd47be8dfab34699897061076d18ab633ba403b39b
- SHA512
  
  9e61c5d40263c34f5cb5a0869c9dde1f5c05aae391c5a5a2071145314d5ea27ec788e3b40b0b0842d79febeb8d99863cf8fd6e941b706a2d872cc4fd5881a905
- SSDEEP
  
  6144:GTz+WrPFZvTXb4RyW42vFlOloh2E+7pYUozDK:GTBPFV0RyWl3h2E+7pl
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2