f42cb6e087bcc897bff2ec1e1e07adf14f3853072a432643c6ae43b6c25e3ad4 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

NEAS.025a5449052d48417cfe8962155c0150_JC.exe
Size

8KB
Sample

231016-n8nr8aeb6v
MD5

025a5449052d48417cfe8962155c0150
SHA1

c9c1338c7d93c241cf36956680e6f0c40cdb9595
SHA256

f42cb6e087bcc897bff2ec1e1e07adf14f3853072a432643c6ae43b6c25e3ad4
SHA512

3acb993a8bef8150469848c774eb68b6ccbc07bdfda0c5f061cf7c1738cf961a1fa989d7c0aafa1cb4b97efd2c8e8503cee8fca72bb7be61097e0ae1b5f78f96
SSDEEP

96:mBI2jYtevLGayd9BgbBfPwAnQWRRUR2CqD9Iva7l+5ykrZVAUFZelggWjdY:mBI2jYtjd4lfNQWRRIMggQr/7Uv+Y

Score

7^/10

Malware Config

Targets

- Target
  
  NEAS.025a5449052d48417cfe8962155c0150_JC.exe
- Size
  
  8KB
- MD5
  
  025a5449052d48417cfe8962155c0150
- SHA1
  
  c9c1338c7d93c241cf36956680e6f0c40cdb9595
- SHA256
  
  f42cb6e087bcc897bff2ec1e1e07adf14f3853072a432643c6ae43b6c25e3ad4
- SHA512
  
  3acb993a8bef8150469848c774eb68b6ccbc07bdfda0c5f061cf7c1738cf961a1fa989d7c0aafa1cb4b97efd2c8e8503cee8fca72bb7be61097e0ae1b5f78f96
- SSDEEP
  
  96:mBI2jYtevLGayd9BgbBfPwAnQWRRUR2CqD9Iva7l+5ykrZVAUFZelggWjdY:mBI2jYtjd4lfNQWRRIMggQr/7Uv+Y
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2