50fa87fd33b71754b5e897d14a849df40ec7b80cd89946c409d6889af0bdf03b | Triage

Sharing

General

Target

NEAS.174ce6c79ab06a1004461fbd2ebc7657_JC.exe
Size

433KB
Sample

231010-v2s7pagh45
MD5

174ce6c79ab06a1004461fbd2ebc7657
SHA1

d1c68758d9461cc2416113114546035f91c0f5d4
SHA256

50fa87fd33b71754b5e897d14a849df40ec7b80cd89946c409d6889af0bdf03b
SHA512

def5c75c1222df064ffe6b304d7faad0ba0a1bd30a98920c10ae341844402d144f0abcc481120c10c73e812ca614dfccfe8731d075a50acc3c4fdde53d966cbd
SSDEEP

12288:QT6SZhP46SCTbSwgS1IaPRJbDh4i0vm4OsKN5sTuU:QThhP46SCTbSwgS1IaPRJbDh4i0vm4Oy

Score

7^/10

Malware Config

Targets

- Target
  
  NEAS.174ce6c79ab06a1004461fbd2ebc7657_JC.exe
- Size
  
  433KB
- MD5
  
  174ce6c79ab06a1004461fbd2ebc7657
- SHA1
  
  d1c68758d9461cc2416113114546035f91c0f5d4
- SHA256
  
  50fa87fd33b71754b5e897d14a849df40ec7b80cd89946c409d6889af0bdf03b
- SHA512
  
  def5c75c1222df064ffe6b304d7faad0ba0a1bd30a98920c10ae341844402d144f0abcc481120c10c73e812ca614dfccfe8731d075a50acc3c4fdde53d966cbd
- SSDEEP
  
  12288:QT6SZhP46SCTbSwgS1IaPRJbDh4i0vm4OsKN5sTuU:QThhP46SCTbSwgS1IaPRJbDh4i0vm4Oy
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2