46701a34497e64fea4b9893a548d935caaf497f2b9a7810b6191837bd86cdcce | Triage

Sharing

General

Target

NEAS.09c2f322d75465e808f44f6071ea0440.exe
Size

38KB
Sample

231028-wmjv5sdd8x
MD5

09c2f322d75465e808f44f6071ea0440
SHA1

fdbb234a0d538cf81d65b2f4c69ac2ebaa95aaf8
SHA256

46701a34497e64fea4b9893a548d935caaf497f2b9a7810b6191837bd86cdcce
SHA512

185d26216f0343416c816aab222cccbd0ced255b8f012aaf6a7add7f428b27c1c87a212a64ce03902856e466c5629f04d5c264c0ed3812640b3959bd54eb1bff
SSDEEP

384:oOY2HsF6QkSxbRxlFYs3xMR5WYKZseH59Vzrvb0BBM+YCro15BWT:oOY2HJSxb3HXBQFKV9V/vbwayro15A

Score

7^/10

Malware Config

Targets

- Target
  
  NEAS.09c2f322d75465e808f44f6071ea0440.exe
- Size
  
  38KB
- MD5
  
  09c2f322d75465e808f44f6071ea0440
- SHA1
  
  fdbb234a0d538cf81d65b2f4c69ac2ebaa95aaf8
- SHA256
  
  46701a34497e64fea4b9893a548d935caaf497f2b9a7810b6191837bd86cdcce
- SHA512
  
  185d26216f0343416c816aab222cccbd0ced255b8f012aaf6a7add7f428b27c1c87a212a64ce03902856e466c5629f04d5c264c0ed3812640b3959bd54eb1bff
- SSDEEP
  
  384:oOY2HsF6QkSxbRxlFYs3xMR5WYKZseH59Vzrvb0BBM+YCro15BWT:oOY2HJSxb3HXBQFKV9V/vbwayro15A
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2