General
-
Target
NEAS.851ea41b9ee693a24cb02dc890a85ec0.exe
-
Size
244KB
-
Sample
231014-wnbadsee29
-
MD5
851ea41b9ee693a24cb02dc890a85ec0
-
SHA1
7e167372cd3a3de90cc242efbf9672473e6212c1
-
SHA256
243e6f07b49224fab0a12ebbc67e3b065ddc8cc142fc5799883f865d758ce3aa
-
SHA512
84eb07931fb2058027f42054951008a43c32e8e98b9a7e813ad4ad4c1b924de381d9891cd374f0e43b4a71930d3a012a381c3968d79a5272683403c9efc15837
-
SSDEEP
6144:nTiw8DFe0qip4r1XNOmNBLxAG7H59R7g0fY4rGK/fObT/bGijVq1Wzr/+mNGXnFZ:nTJ8DFe0qip4rZNOm3FAG7H59R7g0fYk
Malware Config
Targets
-
-
Target
NEAS.851ea41b9ee693a24cb02dc890a85ec0.exe
-
Size
244KB
-
MD5
851ea41b9ee693a24cb02dc890a85ec0
-
SHA1
7e167372cd3a3de90cc242efbf9672473e6212c1
-
SHA256
243e6f07b49224fab0a12ebbc67e3b065ddc8cc142fc5799883f865d758ce3aa
-
SHA512
84eb07931fb2058027f42054951008a43c32e8e98b9a7e813ad4ad4c1b924de381d9891cd374f0e43b4a71930d3a012a381c3968d79a5272683403c9efc15837
-
SSDEEP
6144:nTiw8DFe0qip4r1XNOmNBLxAG7H59R7g0fY4rGK/fObT/bGijVq1Wzr/+mNGXnFZ:nTJ8DFe0qip4rZNOm3FAG7H59R7g0fYk
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-