fca51c9131b9e6470825cabc9f0eb995c62a4ada1a902a9cc68d99948b461d1a | Triage

Sharing

General

Target

NA_NA_205104b1839d39exeexe_JC.exe
Size

93KB
Sample

230723-wm39sagb4z
MD5

205104b1839d392dad40adb081e3ca27
SHA1

d7ef4e57b784127e56a5127825a53cdd9b954fba
SHA256

fca51c9131b9e6470825cabc9f0eb995c62a4ada1a902a9cc68d99948b461d1a
SHA512

cebe76cad9618ef2733326ccf93475cd86a310d4218ab92dcbd3289fafd4fa0dbaa6fb769ca73307e935a012accf16da6083c5c54491f348e6d747d86d10c99a
SSDEEP

1536:ZzFbxmLPWQMOtEvwDpj386Sj/Rs580giz6SJ0U/6Yt:ZVxkGOtEvwDpjc+

Score

7^/10

Malware Config

Targets

- Target
  
  NA_NA_205104b1839d39exeexe_JC.exe
- Size
  
  93KB
- MD5
  
  205104b1839d392dad40adb081e3ca27
- SHA1
  
  d7ef4e57b784127e56a5127825a53cdd9b954fba
- SHA256
  
  fca51c9131b9e6470825cabc9f0eb995c62a4ada1a902a9cc68d99948b461d1a
- SHA512
  
  cebe76cad9618ef2733326ccf93475cd86a310d4218ab92dcbd3289fafd4fa0dbaa6fb769ca73307e935a012accf16da6083c5c54491f348e6d747d86d10c99a
- SSDEEP
  
  1536:ZzFbxmLPWQMOtEvwDpj386Sj/Rs580giz6SJ0U/6Yt:ZVxkGOtEvwDpjc+
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2