b75b18c5072aa0766c05d5cf7f14b883b25f610b1b249d2949a2884e29dd4813 | Triage

Sharing

General

Target

NEAS.04f97157108db7cab1926a46ae4b3b50_JC.exe
Size

114KB
Sample

231011-th18hsbd92
MD5

04f97157108db7cab1926a46ae4b3b50
SHA1

cd7931ddc5c47c07fad94b5e3802ef722fb34f00
SHA256

b75b18c5072aa0766c05d5cf7f14b883b25f610b1b249d2949a2884e29dd4813
SHA512

f31d51ed6a5e91df77eafa130c5d9d4752635c3d79a7733f94f41105bd7c95c7fdf4258bf6d452d6de35606de6af385d3301bb807e2f11614c873dd604efa8b6
SSDEEP

1536:AwRABU6LQy0c2U5I/6TB2qcg+R0Tnt/zcmAHcvxDvrMgZ9:AwRABU7c2UTBcIBzcf8pDTM89

Score

7^/10

Malware Config

Targets

- Target
  
  NEAS.04f97157108db7cab1926a46ae4b3b50_JC.exe
- Size
  
  114KB
- MD5
  
  04f97157108db7cab1926a46ae4b3b50
- SHA1
  
  cd7931ddc5c47c07fad94b5e3802ef722fb34f00
- SHA256
  
  b75b18c5072aa0766c05d5cf7f14b883b25f610b1b249d2949a2884e29dd4813
- SHA512
  
  f31d51ed6a5e91df77eafa130c5d9d4752635c3d79a7733f94f41105bd7c95c7fdf4258bf6d452d6de35606de6af385d3301bb807e2f11614c873dd604efa8b6
- SSDEEP
  
  1536:AwRABU6LQy0c2U5I/6TB2qcg+R0Tnt/zcmAHcvxDvrMgZ9:AwRABU7c2UTBcIBzcf8pDTM89
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2