50709b8f592b36e66c402991278ae9949bed8cc8344b61d2eeec034b192d78fa | Triage

Sharing

General

Target

NEAS.84293006a6338d5a54efc92975f488f0_JC.exe
Size

23KB
Sample

231105-fjzt7aba9t
MD5

84293006a6338d5a54efc92975f488f0
SHA1

79d485aba715ea282183065ffd04307ad91a112c
SHA256

50709b8f592b36e66c402991278ae9949bed8cc8344b61d2eeec034b192d78fa
SHA512

92edb6c469597fc44f044d0695c56c99a0181b2d71cb93adffcfa3c4a9179195ed44e6d3c2334cccc627a6d8b4035f1aefd2c5640b238ae683e6a0c856b8028b
SSDEEP

384:W6CpSYp0ai1jf4eVFra8w1oOBkYgRIPZtN8nIFyBL:W67xaGjAer2kYOwD2IYd

Score

7^/10

Malware Config

Targets

- Target
  
  NEAS.84293006a6338d5a54efc92975f488f0_JC.exe
- Size
  
  23KB
- MD5
  
  84293006a6338d5a54efc92975f488f0
- SHA1
  
  79d485aba715ea282183065ffd04307ad91a112c
- SHA256
  
  50709b8f592b36e66c402991278ae9949bed8cc8344b61d2eeec034b192d78fa
- SHA512
  
  92edb6c469597fc44f044d0695c56c99a0181b2d71cb93adffcfa3c4a9179195ed44e6d3c2334cccc627a6d8b4035f1aefd2c5640b238ae683e6a0c856b8028b
- SSDEEP
  
  384:W6CpSYp0ai1jf4eVFra8w1oOBkYgRIPZtN8nIFyBL:W67xaGjAer2kYOwD2IYd
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2