General
-
Target
NEAS.e45ae818043eb65a59f5ba52a4937695_JC.exe
-
Size
1.1MB
-
Sample
231021-x67a8ahd3y
-
MD5
e45ae818043eb65a59f5ba52a4937695
-
SHA1
2dd9b8009a079a8d53149a92aa8d7d2082efc38e
-
SHA256
31b83d0ff76669fb63eb74e4221813053277ecb3772a08de4f7bcd03b285fb22
-
SHA512
0a7d5a40ae2cdd3f08e2762bec8ff15e84006ec61a08ca78dd974b5354c5fa30ab0bb7df51fbcf8e35aacb67a6b27fdb77cd025dbd5315ca3ee79ff9896c1925
-
SSDEEP
24576:1nsJ39LyjbJkQFMhmC+6GD9FNUxKj4Xg/:1nsHyjtk2MYC5GDxEQ/
Malware Config
Targets
-
-
Target
NEAS.e45ae818043eb65a59f5ba52a4937695_JC.exe
-
Size
1.1MB
-
MD5
e45ae818043eb65a59f5ba52a4937695
-
SHA1
2dd9b8009a079a8d53149a92aa8d7d2082efc38e
-
SHA256
31b83d0ff76669fb63eb74e4221813053277ecb3772a08de4f7bcd03b285fb22
-
SHA512
0a7d5a40ae2cdd3f08e2762bec8ff15e84006ec61a08ca78dd974b5354c5fa30ab0bb7df51fbcf8e35aacb67a6b27fdb77cd025dbd5315ca3ee79ff9896c1925
-
SSDEEP
24576:1nsJ39LyjbJkQFMhmC+6GD9FNUxKj4Xg/:1nsHyjtk2MYC5GDxEQ/
Score7/10-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-