2899f00c87090337a106bdfc3d7ccf7f862e17cdf702b68d00d235bcfaf98d0c | Triage

Sharing

General

Target

4dd6380506659028c3464b145e2de680_JC.exe
Size

14KB
Sample

230917-vg8rmsbe3v
MD5

4dd6380506659028c3464b145e2de680
SHA1

f60c57dfdee0b05f43a6b3542ff34c24ac5882fa
SHA256

2899f00c87090337a106bdfc3d7ccf7f862e17cdf702b68d00d235bcfaf98d0c
SHA512

df53bbb7c36ae3952aea04335d3e7dfc7843f01459fdbbe05e3291c87bea47ddfaecfea7514b66708dd14040e8dfa169dcb8b7b01d7beb850d099ba22767cff4
SSDEEP

384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhL:hDXWipuE+K3/SSHgxN

Score

7^/10

Malware Config

Targets

- Target
  
  4dd6380506659028c3464b145e2de680_JC.exe
- Size
  
  14KB
- MD5
  
  4dd6380506659028c3464b145e2de680
- SHA1
  
  f60c57dfdee0b05f43a6b3542ff34c24ac5882fa
- SHA256
  
  2899f00c87090337a106bdfc3d7ccf7f862e17cdf702b68d00d235bcfaf98d0c
- SHA512
  
  df53bbb7c36ae3952aea04335d3e7dfc7843f01459fdbbe05e3291c87bea47ddfaecfea7514b66708dd14040e8dfa169dcb8b7b01d7beb850d099ba22767cff4
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhL:hDXWipuE+K3/SSHgxN
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2