f1706e1939b4eeee8416b2cefb4ba4d04b43a8eb8b7d187655fb6256b70e5c55 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

NEAS.26527bc375e2b3dfe0440bdd6fe20a80_JC.exe
Size

817KB
Sample

231016-v6pp3aba8z
MD5

26527bc375e2b3dfe0440bdd6fe20a80
SHA1

df85122440acdf0c4510d4f1902239d1926ca2fd
SHA256

f1706e1939b4eeee8416b2cefb4ba4d04b43a8eb8b7d187655fb6256b70e5c55
SHA512

11c116cccddbd0237f4c6ce5b8dbabeeda1a80735e507a3d654fa066716bdba064b106f3bdf082d1b2fc155528bdf41bf79574d0487271afb2c0d37a8a22f082
SSDEEP

6144:oqDAwl0xPTMiR9JSSxPUKYGdodH/baqE7Al8jk2jcbaqE7Al8jk2jII:o+67XR9JSSxvYGdodH/1CVc1CVII

Score

7^/10

Malware Config

Targets

- Target
  
  NEAS.26527bc375e2b3dfe0440bdd6fe20a80_JC.exe
- Size
  
  817KB
- MD5
  
  26527bc375e2b3dfe0440bdd6fe20a80
- SHA1
  
  df85122440acdf0c4510d4f1902239d1926ca2fd
- SHA256
  
  f1706e1939b4eeee8416b2cefb4ba4d04b43a8eb8b7d187655fb6256b70e5c55
- SHA512
  
  11c116cccddbd0237f4c6ce5b8dbabeeda1a80735e507a3d654fa066716bdba064b106f3bdf082d1b2fc155528bdf41bf79574d0487271afb2c0d37a8a22f082
- SSDEEP
  
  6144:oqDAwl0xPTMiR9JSSxPUKYGdodH/baqE7Al8jk2jcbaqE7Al8jk2jII:o+67XR9JSSxvYGdodH/1CVc1CVII
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2