986849ad807ec4c2e195c84c2aac0e95171a709b87147e0cd3494d2aafc5edcc | Triage

Sharing

Copy URL Twitter E-mail

General

Target

NA_NA_3c9b74f66f1e8fexeexe_JC.exe
Size

327KB
Sample

230724-qflhhadf22
MD5

3c9b74f66f1e8f4e606fb917c4edd3be
SHA1

8c398a0bf7465205adbddfa9d3dd07af145ec03f
SHA256

986849ad807ec4c2e195c84c2aac0e95171a709b87147e0cd3494d2aafc5edcc
SHA512

d4bacadde5dc9d00de7ba1f6ecae70fef58de6e1dede7e8b8f8bc822ef27730d43783f313c236bbbe0f1fa18ef54c7e399aa8907e7c64bdfc98c6846fb9c07c3
SSDEEP

6144:fJ2+JS2sFafI8U0obHCW/2a7XQcsPMjVWrG89gkPzDh1v:fJ2TFafJiHCWBWPMjVWrXf1v

Score

7^/10

Malware Config

Targets

- Target
  
  NA_NA_3c9b74f66f1e8fexeexe_JC.exe
- Size
  
  327KB
- MD5
  
  3c9b74f66f1e8f4e606fb917c4edd3be
- SHA1
  
  8c398a0bf7465205adbddfa9d3dd07af145ec03f
- SHA256
  
  986849ad807ec4c2e195c84c2aac0e95171a709b87147e0cd3494d2aafc5edcc
- SHA512
  
  d4bacadde5dc9d00de7ba1f6ecae70fef58de6e1dede7e8b8f8bc822ef27730d43783f313c236bbbe0f1fa18ef54c7e399aa8907e7c64bdfc98c6846fb9c07c3
- SSDEEP
  
  6144:fJ2+JS2sFafI8U0obHCW/2a7XQcsPMjVWrG89gkPzDh1v:fJ2TFafJiHCWBWPMjVWrXf1v
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2