926a4569c3ad16acee753993d5f867a3e4b8667777e1e437eb62dcbbfda91acd | Triage

Sharing

General

Target

NEAS.fc77b8a2f2192a63ab32391b4c4c5690.exe
Size

32KB
Sample

231014-karvfach98
MD5

fc77b8a2f2192a63ab32391b4c4c5690
SHA1

cd9a152f56185291b8ca354008e7fc3ce699418f
SHA256

926a4569c3ad16acee753993d5f867a3e4b8667777e1e437eb62dcbbfda91acd
SHA512

478a23051d4b303123de552e2920e33951c12bb8644378f2ee7dcdae79e5d7795fe0c5a276ff6537542df3bca7b6be329f29829880e87dd363f7af1a9a2629bb
SSDEEP

384:/QaQWRIgS3Wvr+DipTy08EqgBq+MmOjso7D4bHIin+5amcz/CzZQ0OgP7iOUG7:/fhR+SEipTyC3Bq+MFhC+5amYCNMOF7

Score

7^/10

Malware Config

Targets

- Target
  
  NEAS.fc77b8a2f2192a63ab32391b4c4c5690.exe
- Size
  
  32KB
- MD5
  
  fc77b8a2f2192a63ab32391b4c4c5690
- SHA1
  
  cd9a152f56185291b8ca354008e7fc3ce699418f
- SHA256
  
  926a4569c3ad16acee753993d5f867a3e4b8667777e1e437eb62dcbbfda91acd
- SHA512
  
  478a23051d4b303123de552e2920e33951c12bb8644378f2ee7dcdae79e5d7795fe0c5a276ff6537542df3bca7b6be329f29829880e87dd363f7af1a9a2629bb
- SSDEEP
  
  384:/QaQWRIgS3Wvr+DipTy08EqgBq+MmOjso7D4bHIin+5amcz/CzZQ0OgP7iOUG7:/fhR+SEipTyC3Bq+MFhC+5amYCNMOF7
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2