059c0e893a3e30b66afa0e2379f7236004bdbb2dfdb2963964aae2c52b82e151 | Triage

Sharing

General

Target

NEAS.bd309f3c63b337dd1e416592d47ebbc0.exe
Size

30KB
Sample

231016-w8fevaae3t
MD5

bd309f3c63b337dd1e416592d47ebbc0
SHA1

555622c4c8a5047e456de1c45af25868b886f7b9
SHA256

059c0e893a3e30b66afa0e2379f7236004bdbb2dfdb2963964aae2c52b82e151
SHA512

53ea3dc2d618684321c2ffc07d3393e6470be8093a5c544dc27e747950dba2d8a605c82c2d2b438e4e7a7658d1537e2cf33c41bea40d788f3ca446a6588343f9
SSDEEP

384:IGnwLfOBOMoY894calJJjjjCRAAAAA7MHAKifyRPceS3ZE8h5XwUGwGggL6ueIAH:IGnekOEPJjjm/SeCkwfgGRIAH

Score

7^/10

Malware Config

Targets

- Target
  
  NEAS.bd309f3c63b337dd1e416592d47ebbc0.exe
- Size
  
  30KB
- MD5
  
  bd309f3c63b337dd1e416592d47ebbc0
- SHA1
  
  555622c4c8a5047e456de1c45af25868b886f7b9
- SHA256
  
  059c0e893a3e30b66afa0e2379f7236004bdbb2dfdb2963964aae2c52b82e151
- SHA512
  
  53ea3dc2d618684321c2ffc07d3393e6470be8093a5c544dc27e747950dba2d8a605c82c2d2b438e4e7a7658d1537e2cf33c41bea40d788f3ca446a6588343f9
- SSDEEP
  
  384:IGnwLfOBOMoY894calJJjjjCRAAAAA7MHAKifyRPceS3ZE8h5XwUGwGggL6ueIAH:IGnekOEPJjjm/SeCkwfgGRIAH
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2