150758f9e179d56994ce4a6298208bde4e797ed14ba70ec8615b9cd4f5e4a08f | Triage

Sharing

General

Target

NEAS.18df6273435e01486e75cca73f5e9af0_JC.exe
Size

816KB
Sample

231014-qylk8aeg9s
MD5

18df6273435e01486e75cca73f5e9af0
SHA1

691cfaa58c6482b82497113cb5982d74cc1dc8a2
SHA256

150758f9e179d56994ce4a6298208bde4e797ed14ba70ec8615b9cd4f5e4a08f
SHA512

d680d43af442d7255931bb25bdb4a0e85bcb919cded8c3a9f3d9d9d933e4e71c2dba627a8a86264af5420210430831ad0d0020bf5af4515deb54978b09e7244a
SSDEEP

6144:oqDAwl0xPTMiR9JSSxPUKYGdodH/baqE7Al8jk2jcbaqE7Al8jk2jIO:o+67XR9JSSxvYGdodH/1CVc1CVIO

Score

7^/10

Malware Config

Targets

- Target
  
  NEAS.18df6273435e01486e75cca73f5e9af0_JC.exe
- Size
  
  816KB
- MD5
  
  18df6273435e01486e75cca73f5e9af0
- SHA1
  
  691cfaa58c6482b82497113cb5982d74cc1dc8a2
- SHA256
  
  150758f9e179d56994ce4a6298208bde4e797ed14ba70ec8615b9cd4f5e4a08f
- SHA512
  
  d680d43af442d7255931bb25bdb4a0e85bcb919cded8c3a9f3d9d9d933e4e71c2dba627a8a86264af5420210430831ad0d0020bf5af4515deb54978b09e7244a
- SSDEEP
  
  6144:oqDAwl0xPTMiR9JSSxPUKYGdodH/baqE7Al8jk2jcbaqE7Al8jk2jIO:o+67XR9JSSxvYGdodH/1CVc1CVIO
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2