8c8ea35d89aaf4f45c35de6013fa16e5df54b5d6cce5d52b11dcf49080a29ba1 | Triage

Sharing

General

Target

NEAS.103357da447149f02ee9e60e14ac7710.exe
Size

88KB
Sample

231022-vahlwada97
MD5

103357da447149f02ee9e60e14ac7710
SHA1

e46f6d3e4982a0287abef8151078a323a403ad46
SHA256

8c8ea35d89aaf4f45c35de6013fa16e5df54b5d6cce5d52b11dcf49080a29ba1
SHA512

e1a1fc2b87ce511933b604fc8d9e9f30ed7ea3bcbd525ec48c13bcb490328ab063b9f05384f3e1de60d3bd66c5aac0795e7b9d8f7d2d19f067ee5862dacaec86
SSDEEP

1536:gGaq93mQy5PV4MSu4M3vfAlA89mWMMF4pzYU2qIUZ6kd+lB:g5MaVVnLA0WLM0Uvh6kd+lB

Score

7^/10

Malware Config

Targets

- Target
  
  NEAS.103357da447149f02ee9e60e14ac7710.exe
- Size
  
  88KB
- MD5
  
  103357da447149f02ee9e60e14ac7710
- SHA1
  
  e46f6d3e4982a0287abef8151078a323a403ad46
- SHA256
  
  8c8ea35d89aaf4f45c35de6013fa16e5df54b5d6cce5d52b11dcf49080a29ba1
- SHA512
  
  e1a1fc2b87ce511933b604fc8d9e9f30ed7ea3bcbd525ec48c13bcb490328ab063b9f05384f3e1de60d3bd66c5aac0795e7b9d8f7d2d19f067ee5862dacaec86
- SSDEEP
  
  1536:gGaq93mQy5PV4MSu4M3vfAlA89mWMMF4pzYU2qIUZ6kd+lB:g5MaVVnLA0WLM0Uvh6kd+lB
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2