d5b7706d5ac679e1e8d9096bb11fd9c6a09267f7f664ea54ca648cadc3ca637a | Triage

Sharing

General

Target

7ef506831605a8af28bcdeeef3e42719_JC.exe
Size

59KB
Sample

231001-pgvxwsca94
MD5

7ef506831605a8af28bcdeeef3e42719
SHA1

7877eec4e4bf878d24df54535fa0805e2efaf5f2
SHA256

d5b7706d5ac679e1e8d9096bb11fd9c6a09267f7f664ea54ca648cadc3ca637a
SHA512

d18a7be274df266c188641268c6c9a0afa8472902005f8e5e2fdb7f05b18ca7aed830f1bacba2af1bcdf9697a95b4be688b6f06b3033041bad2b116de879b047
SSDEEP

384:+5rDuuOFpEauMLfQDb2pproT/z4o1GJE6Al6zVyXeTLhrqNNNNLwwwwgD:MDcpEBMLfQcubtGE96ByXeTLdx

Score

8^/10

evasion

Malware Config

Targets

- Target
  
  7ef506831605a8af28bcdeeef3e42719_JC.exe
- Size
  
  59KB
- MD5
  
  7ef506831605a8af28bcdeeef3e42719
- SHA1
  
  7877eec4e4bf878d24df54535fa0805e2efaf5f2
- SHA256
  
  d5b7706d5ac679e1e8d9096bb11fd9c6a09267f7f664ea54ca648cadc3ca637a
- SHA512
  
  d18a7be274df266c188641268c6c9a0afa8472902005f8e5e2fdb7f05b18ca7aed830f1bacba2af1bcdf9697a95b4be688b6f06b3033041bad2b116de879b047
- SSDEEP
  
  384:+5rDuuOFpEauMLfQDb2pproT/z4o1GJE6Al6zVyXeTLhrqNNNNLwwwwgD:MDcpEBMLfQcubtGE96ByXeTLdx
Score

8^/10

evasion
- Sets file to hidden
  Modifies file attributes to stop it showing in Explorer etc.
  evasion
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Hide Artifacts

Hidden Files and Directories

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2