6e1c9f3c56ac2e7340ebc8d29ac2a4e6a0cb40b5442be00aa0e2bd38b3a868c1 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

146c23e2fa312567aabb9dad355e98d9_JC.exe
Size

397KB
Sample

231011-rfc2ssdh85
MD5

146c23e2fa312567aabb9dad355e98d9
SHA1

b2a8b373939d7e3bee10f02040414a5018faba46
SHA256

6e1c9f3c56ac2e7340ebc8d29ac2a4e6a0cb40b5442be00aa0e2bd38b3a868c1
SHA512

0e923be9a5bff27614f28ac92b7d37393f2b694152f617f703d169e1912b46d3b13fe6b33feee267997a53b922c3bb5e13ebbee2399896c0a28637f5e84681ac
SSDEEP

1536:cXBYjfC24mFVsIgvo3X4iZpTha5VlA8mw7aoL8lYTjipvF2lR:cX+0mFmIgvo4iZhha5rZaoL8lYvQd2lR

Score

7^/10

Malware Config

Targets

- Target
  
  146c23e2fa312567aabb9dad355e98d9_JC.exe
- Size
  
  397KB
- MD5
  
  146c23e2fa312567aabb9dad355e98d9
- SHA1
  
  b2a8b373939d7e3bee10f02040414a5018faba46
- SHA256
  
  6e1c9f3c56ac2e7340ebc8d29ac2a4e6a0cb40b5442be00aa0e2bd38b3a868c1
- SHA512
  
  0e923be9a5bff27614f28ac92b7d37393f2b694152f617f703d169e1912b46d3b13fe6b33feee267997a53b922c3bb5e13ebbee2399896c0a28637f5e84681ac
- SSDEEP
  
  1536:cXBYjfC24mFVsIgvo3X4iZpTha5VlA8mw7aoL8lYTjipvF2lR:cX+0mFmIgvo4iZhha5rZaoL8lYvQd2lR
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2