c5f5a8635778b6207b84e5e3d358f952278c8bcf03a6ccd5d5b3c50e1ad2522f | Triage

Sharing

Copy URL Twitter E-mail

General

Target

NA_NA_364f181c7f96cdexeexe_JC.exe
Size

75KB
Sample

230723-y8q8fsgf43
MD5

364f181c7f96cdeb964f7e7c49403fcc
SHA1

397ddae5b7d76530f41e3b692885671c0a4aa669
SHA256

c5f5a8635778b6207b84e5e3d358f952278c8bcf03a6ccd5d5b3c50e1ad2522f
SHA512

6a29c5a37b28dfb1a6e5b615c021ccc178edde4a3f576bb08e8e19b5b591f775aba360d17bb8c60463a6be454ab8e2132550bc5261619c6a3893e0f123ea335d
SSDEEP

1536:vj+jsMQMOtEvwDpj5HwYYTjipvF2hBfyQ1p:vCjsIOtEvwDpj5H9YvQd2F

Score

7^/10

Malware Config

Targets

- Target
  
  NA_NA_364f181c7f96cdexeexe_JC.exe
- Size
  
  75KB
- MD5
  
  364f181c7f96cdeb964f7e7c49403fcc
- SHA1
  
  397ddae5b7d76530f41e3b692885671c0a4aa669
- SHA256
  
  c5f5a8635778b6207b84e5e3d358f952278c8bcf03a6ccd5d5b3c50e1ad2522f
- SHA512
  
  6a29c5a37b28dfb1a6e5b615c021ccc178edde4a3f576bb08e8e19b5b591f775aba360d17bb8c60463a6be454ab8e2132550bc5261619c6a3893e0f123ea335d
- SSDEEP
  
  1536:vj+jsMQMOtEvwDpj5HwYYTjipvF2hBfyQ1p:vCjsIOtEvwDpj5H9YvQd2F
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2