10243f83234e3afe0ee66f36517b4e08869f27a4edc4e33a1141e31d78db3d4d | Triage

Sharing

General

Target

NEAS.205482aaa3fb5a04221884f4cf794220_JC.exe
Size

2.8MB
Sample

231011-wm3y1sde5w
MD5

205482aaa3fb5a04221884f4cf794220
SHA1

19b0c915d73db58cf0f5a43eafad19aeeb914786
SHA256

10243f83234e3afe0ee66f36517b4e08869f27a4edc4e33a1141e31d78db3d4d
SHA512

b5b3d350d283fb2d4b2ae8ba436ca3858187405b57e7636221de7c781c7fe32125fd5ec451b5b9bc14a284d22bb9d6d0b025ba896588389580f9ec1c751f038c
SSDEEP

49152:tylFHUv6ReIt0jSrOogENXwu3qCqtKBjJj4B7hZIq7T94gcIFwxgo4:0lFHU85t0jS/gENAu6ChJjA7hZIq7T9T

Score

7^/10

Malware Config

Targets

- Target
  
  NEAS.205482aaa3fb5a04221884f4cf794220_JC.exe
- Size
  
  2.8MB
- MD5
  
  205482aaa3fb5a04221884f4cf794220
- SHA1
  
  19b0c915d73db58cf0f5a43eafad19aeeb914786
- SHA256
  
  10243f83234e3afe0ee66f36517b4e08869f27a4edc4e33a1141e31d78db3d4d
- SHA512
  
  b5b3d350d283fb2d4b2ae8ba436ca3858187405b57e7636221de7c781c7fe32125fd5ec451b5b9bc14a284d22bb9d6d0b025ba896588389580f9ec1c751f038c
- SSDEEP
  
  49152:tylFHUv6ReIt0jSrOogENXwu3qCqtKBjJj4B7hZIq7T94gcIFwxgo4:0lFHU85t0jS/gENAu6ChJjA7hZIq7T9T
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2