388c650cf410ec4094e0f99bf281c79b2205a6c876644626dc446e18b6fe1e67 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

32209006396e841a6a80b5c53013f8e0_exe32_JC.exe
Size

17KB
Sample

231015-x4xn1aah2t
MD5

32209006396e841a6a80b5c53013f8e0
SHA1

0b5889200b662b7229a7db5255bb9bed4f904759
SHA256

388c650cf410ec4094e0f99bf281c79b2205a6c876644626dc446e18b6fe1e67
SHA512

689744bbfb3f74f3744dd65b67366d1dbcfd655505c891d834df761b5151a37547df3eeac765bd4c6187c99df7fc9876e07f72ca0c9dfeb5aaf641987333e21f
SSDEEP

192:EJQn/Q+zFmu9zRzYjFbO9z5h2ejDVsZ9EON6Ip8q922TE0BMj8/57LxlfQSLUkX:w2/WkzRzYjFi9j2ejD09AI7922w0VnQg

Score

7^/10

Malware Config

Targets

- Target
  
  32209006396e841a6a80b5c53013f8e0_exe32_JC.exe
- Size
  
  17KB
- MD5
  
  32209006396e841a6a80b5c53013f8e0
- SHA1
  
  0b5889200b662b7229a7db5255bb9bed4f904759
- SHA256
  
  388c650cf410ec4094e0f99bf281c79b2205a6c876644626dc446e18b6fe1e67
- SHA512
  
  689744bbfb3f74f3744dd65b67366d1dbcfd655505c891d834df761b5151a37547df3eeac765bd4c6187c99df7fc9876e07f72ca0c9dfeb5aaf641987333e21f
- SSDEEP
  
  192:EJQn/Q+zFmu9zRzYjFbO9z5h2ejDVsZ9EON6Ip8q922TE0BMj8/57LxlfQSLUkX:w2/WkzRzYjFi9j2ejD09AI7922w0VnQg
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2