653c35ccd41efee6169c635289dbc2bc2285242ec13cf8908e71d187f328875d | Triage

Sharing

General

Target

NEAS.1e4cc5fefacb6ae7d640fbbe43669f00_JC.exe
Size

29KB
Sample

231011-wh7readb6z
MD5

1e4cc5fefacb6ae7d640fbbe43669f00
SHA1

ba364afbab548f0057549e32cb45a10fec7d4131
SHA256

653c35ccd41efee6169c635289dbc2bc2285242ec13cf8908e71d187f328875d
SHA512

e5c02a1a0df0a49187f910efb905e5814ca6de56409c7455e3c44274586e5264ff345a60cc87fe0a04ed06c83d8a43fb647fb01d1b10337cfcf282952ff1cf29
SSDEEP

384:xiUGhG7/mdI2is9kNWKpm5YG/TsIOtLNLCBsC/XzRR:cUQqQp8y5jwI0LNMsuX

Score

7^/10

Malware Config

Targets

- Target
  
  NEAS.1e4cc5fefacb6ae7d640fbbe43669f00_JC.exe
- Size
  
  29KB
- MD5
  
  1e4cc5fefacb6ae7d640fbbe43669f00
- SHA1
  
  ba364afbab548f0057549e32cb45a10fec7d4131
- SHA256
  
  653c35ccd41efee6169c635289dbc2bc2285242ec13cf8908e71d187f328875d
- SHA512
  
  e5c02a1a0df0a49187f910efb905e5814ca6de56409c7455e3c44274586e5264ff345a60cc87fe0a04ed06c83d8a43fb647fb01d1b10337cfcf282952ff1cf29
- SSDEEP
  
  384:xiUGhG7/mdI2is9kNWKpm5YG/TsIOtLNLCBsC/XzRR:cUQqQp8y5jwI0LNMsuX
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2