77412c1933642ade6fdd122254eee16ed88bde4c22ec63d2371091a36b9953c0 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

NEAS.10e286fa8abd7a83e74619fc764d47e0_JC.exe
Size

655KB
Sample

231014-pzba7sgb32
MD5

10e286fa8abd7a83e74619fc764d47e0
SHA1

5e47a5d6cb6a81b4296b4e3e715bf7d51d97b766
SHA256

77412c1933642ade6fdd122254eee16ed88bde4c22ec63d2371091a36b9953c0
SHA512

e0af9bee11760ab9e670f87416c3329a5beba7b631cbaf6cb20769ff719071bc1e3626fafc4f555cb5bb8db39d6b5776a78570ff8cbcde8151bd77dec7814d8b
SSDEEP

6144:FqDAwl0xPTMiR9JSSxPUKYGdodH/baqE7Al8jk2jL:F+67XR9JSSxvYGdodH/1CVL

Score

7^/10

Malware Config

Targets

- Target
  
  NEAS.10e286fa8abd7a83e74619fc764d47e0_JC.exe
- Size
  
  655KB
- MD5
  
  10e286fa8abd7a83e74619fc764d47e0
- SHA1
  
  5e47a5d6cb6a81b4296b4e3e715bf7d51d97b766
- SHA256
  
  77412c1933642ade6fdd122254eee16ed88bde4c22ec63d2371091a36b9953c0
- SHA512
  
  e0af9bee11760ab9e670f87416c3329a5beba7b631cbaf6cb20769ff719071bc1e3626fafc4f555cb5bb8db39d6b5776a78570ff8cbcde8151bd77dec7814d8b
- SSDEEP
  
  6144:FqDAwl0xPTMiR9JSSxPUKYGdodH/baqE7Al8jk2jL:F+67XR9JSSxvYGdodH/1CVL
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2