206b3f689ab9ad05d62b6f5abbe5d9fcef704f8d0f34618d953c21fd3015fb65 | Triage

Sharing

General

Target

NEAS.0017aa8cc8c0df18da535721f7e18ca0_JC.exe
Size

89KB
Sample

231016-npdsxafg32
MD5

0017aa8cc8c0df18da535721f7e18ca0
SHA1

58ede42aab87ebb0fa90e8a8d813ae4cf7cb2f49
SHA256

206b3f689ab9ad05d62b6f5abbe5d9fcef704f8d0f34618d953c21fd3015fb65
SHA512

58760d84dfd88aacb0ed0155bbe24e82968f943b05936075fbd61f9b82c1682ee800fa2ff83711fa242bab028b2d822548c91fa8acc4421e221889f93975bffd
SSDEEP

1536:ozfMMkPZE1J7S6/PMj42VJEY4ujMepJtANuOAl0QQsIEySYndfc6QkAbtp:+fMNE1JG6XMk27EbpOthl0ZUed06QTv

Score

7^/10

Malware Config

Targets

- Target
  
  NEAS.0017aa8cc8c0df18da535721f7e18ca0_JC.exe
- Size
  
  89KB
- MD5
  
  0017aa8cc8c0df18da535721f7e18ca0
- SHA1
  
  58ede42aab87ebb0fa90e8a8d813ae4cf7cb2f49
- SHA256
  
  206b3f689ab9ad05d62b6f5abbe5d9fcef704f8d0f34618d953c21fd3015fb65
- SHA512
  
  58760d84dfd88aacb0ed0155bbe24e82968f943b05936075fbd61f9b82c1682ee800fa2ff83711fa242bab028b2d822548c91fa8acc4421e221889f93975bffd
- SSDEEP
  
  1536:ozfMMkPZE1J7S6/PMj42VJEY4ujMepJtANuOAl0QQsIEySYndfc6QkAbtp:+fMNE1JG6XMk27EbpOthl0ZUed06QTv
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2