f23ee028dbd2ffeb20eac898a1cd1d72acbb732a3e09a88fbceb9c7d1dbef5d5 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

NEAS.24e352ed5f07190fc26dc9cc13def710.exe
Size

136KB
Sample

231028-wntrqsfh32
MD5

24e352ed5f07190fc26dc9cc13def710
SHA1

4fb3cb0db3992c6e47b66045a02a96296f660361
SHA256

f23ee028dbd2ffeb20eac898a1cd1d72acbb732a3e09a88fbceb9c7d1dbef5d5
SHA512

3d14bd24fb4f96b300b924cf2d15433516aa525aa4945b1ed342f922f825263ff9641eeba8ecb180e8fa1a1387cc770b95bff85a4a4e5d3576bf431aca46dace
SSDEEP

3072:g6pQc+sSxnTrGadgsFqZeo4pwkhUmZr3hPsOraSo:g6p2sSxTrGvsFUejWyZr3hPswaH

Score

7^/10

Malware Config

Targets

- Target
  
  NEAS.24e352ed5f07190fc26dc9cc13def710.exe
- Size
  
  136KB
- MD5
  
  24e352ed5f07190fc26dc9cc13def710
- SHA1
  
  4fb3cb0db3992c6e47b66045a02a96296f660361
- SHA256
  
  f23ee028dbd2ffeb20eac898a1cd1d72acbb732a3e09a88fbceb9c7d1dbef5d5
- SHA512
  
  3d14bd24fb4f96b300b924cf2d15433516aa525aa4945b1ed342f922f825263ff9641eeba8ecb180e8fa1a1387cc770b95bff85a4a4e5d3576bf431aca46dace
- SSDEEP
  
  3072:g6pQc+sSxnTrGadgsFqZeo4pwkhUmZr3hPsOraSo:g6p2sSxTrGvsFUejWyZr3hPswaH
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Hide Artifacts

Hidden Files and Directories

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2