4977f355daa4ac0b24d71aee01c4b64e086df7a26692edd10127a770c09137a9 | Triage

Sharing

General

Target

NEAS.3c24df6d4c8be8ebacf693e1739ba200.exe
Size

7KB
Sample

231016-wxkv7aea37
MD5

3c24df6d4c8be8ebacf693e1739ba200
SHA1

e620e05a8b63b787ed6dae48ab8126d0b03b1606
SHA256

4977f355daa4ac0b24d71aee01c4b64e086df7a26692edd10127a770c09137a9
SHA512

b2b3e740280b60febac63b36f0fca564877607acbbb68e536c0a4bc09afc3c7960c75e3cf0d63fb799aa6cffc3a20100dd06eedf9459244c998cea4aa57c7b4c
SSDEEP

96:ZSign/x6z0AjDXX6Hb3R51nKymV44hjDErqG/giGJJgM0sFZSWzW9MDbW5v8PzzE:oii5qDXX6d51nKfzzNg6FHDbfYQbSnv

Score

7^/10

Malware Config

Targets

- Target
  
  NEAS.3c24df6d4c8be8ebacf693e1739ba200.exe
- Size
  
  7KB
- MD5
  
  3c24df6d4c8be8ebacf693e1739ba200
- SHA1
  
  e620e05a8b63b787ed6dae48ab8126d0b03b1606
- SHA256
  
  4977f355daa4ac0b24d71aee01c4b64e086df7a26692edd10127a770c09137a9
- SHA512
  
  b2b3e740280b60febac63b36f0fca564877607acbbb68e536c0a4bc09afc3c7960c75e3cf0d63fb799aa6cffc3a20100dd06eedf9459244c998cea4aa57c7b4c
- SSDEEP
  
  96:ZSign/x6z0AjDXX6Hb3R51nKymV44hjDErqG/giGJJgM0sFZSWzW9MDbW5v8PzzE:oii5qDXX6d51nKfzzNg6FHDbfYQbSnv
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2