58520880af8d86a5c96c276b7365fe9ab1b1e03d6813200e4796fa4403fcc4ed | Triage

Sharing

General

Target

NEAS.f7360409d0c58f335830de329debb1f0.exe
Size

48KB
Sample

231014-kabs8aaf5y
MD5

f7360409d0c58f335830de329debb1f0
SHA1

db093cd04d3f521a49d7b18211e8a4add3f338d9
SHA256

58520880af8d86a5c96c276b7365fe9ab1b1e03d6813200e4796fa4403fcc4ed
SHA512

6dbdff9bd073d523249819b9681b9bcd72b5f5e1c86e6d5a413527ff600fceab67c4ffac3c2a36494bae113c01390ded1aab75b0c5c829a6ca6fd588cfc0471c
SSDEEP

384:dw2nwR2Fbql2alyVzJshA4FNPxXUfgCsApV2WCMuWl84IqGXhh19:dwowR6XaUVlYNPxkfLsApVZRP+4xGXhZ

Score

7^/10

Malware Config

Targets

- Target
  
  NEAS.f7360409d0c58f335830de329debb1f0.exe
- Size
  
  48KB
- MD5
  
  f7360409d0c58f335830de329debb1f0
- SHA1
  
  db093cd04d3f521a49d7b18211e8a4add3f338d9
- SHA256
  
  58520880af8d86a5c96c276b7365fe9ab1b1e03d6813200e4796fa4403fcc4ed
- SHA512
  
  6dbdff9bd073d523249819b9681b9bcd72b5f5e1c86e6d5a413527ff600fceab67c4ffac3c2a36494bae113c01390ded1aab75b0c5c829a6ca6fd588cfc0471c
- SSDEEP
  
  384:dw2nwR2Fbql2alyVzJshA4FNPxXUfgCsApV2WCMuWl84IqGXhh19:dwowR6XaUVlYNPxkfLsApVZRP+4xGXhZ
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2