2074201cefa1c44adec3cbce5953bc0f9268782b054308062c047600792d846d | Triage

Sharing

Copy URL Twitter E-mail

General

Target

NEAS.c3c9d1168cd8e2b1a069591e503dd650.exe
Size

343KB
Sample

231022-v1ktxsgf2z
MD5

c3c9d1168cd8e2b1a069591e503dd650
SHA1

7e4cfc4710f4df5d60831f727cba367455de1ba4
SHA256

2074201cefa1c44adec3cbce5953bc0f9268782b054308062c047600792d846d
SHA512

b2dc857675a58c3cdf279323379c63f9821b4314ab66fa0f8485d2ab6509515ae6c0e40da9cc3951cd79ddcbd108d3ebd5f0012365d67e45ab6aed7d467ab84b
SSDEEP

6144:S5FrtlrIiswtAyxmbeoYRMHpeW+5GZhgNhHgwNWdVoO:SHrtqi3trxg4uHJXZhgNhHg/d7

Score

7^/10

Malware Config

Targets

- Target
  
  NEAS.c3c9d1168cd8e2b1a069591e503dd650.exe
- Size
  
  343KB
- MD5
  
  c3c9d1168cd8e2b1a069591e503dd650
- SHA1
  
  7e4cfc4710f4df5d60831f727cba367455de1ba4
- SHA256
  
  2074201cefa1c44adec3cbce5953bc0f9268782b054308062c047600792d846d
- SHA512
  
  b2dc857675a58c3cdf279323379c63f9821b4314ab66fa0f8485d2ab6509515ae6c0e40da9cc3951cd79ddcbd108d3ebd5f0012365d67e45ab6aed7d467ab84b
- SSDEEP
  
  6144:S5FrtlrIiswtAyxmbeoYRMHpeW+5GZhgNhHgwNWdVoO:SHrtqi3trxg4uHJXZhgNhHg/d7
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2