6d3315f6774309f4463ca822d08e5d8870dabfd65fa39cc02d80fdce6682b297 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

NEAS.ae4d29521b8bd6e64c251763ddf67a90.exe
Size

22KB
Sample

231101-dg7e5sbe74
MD5

ae4d29521b8bd6e64c251763ddf67a90
SHA1

5c7c275c0ff39ef484387d3bec9cc7baa61c0d19
SHA256

6d3315f6774309f4463ca822d08e5d8870dabfd65fa39cc02d80fdce6682b297
SHA512

a5bda1d4e7c38a065ef825b6b576a22edbded93ee6d81899413783a346a5fcb8649f51f9bcb6e36b0192ee95899b6ed8c0995ec496a2711e4da9e6f708851130
SSDEEP

384:Gk2Wz6pL3a2a999999996cNyoYkytbdH4THKSRX3G1:Z1z6pLxa999999996cgoYkytbdH4zKSw

Score

7^/10

Malware Config

Targets

- Target
  
  NEAS.ae4d29521b8bd6e64c251763ddf67a90.exe
- Size
  
  22KB
- MD5
  
  ae4d29521b8bd6e64c251763ddf67a90
- SHA1
  
  5c7c275c0ff39ef484387d3bec9cc7baa61c0d19
- SHA256
  
  6d3315f6774309f4463ca822d08e5d8870dabfd65fa39cc02d80fdce6682b297
- SHA512
  
  a5bda1d4e7c38a065ef825b6b576a22edbded93ee6d81899413783a346a5fcb8649f51f9bcb6e36b0192ee95899b6ed8c0995ec496a2711e4da9e6f708851130
- SSDEEP
  
  384:Gk2Wz6pL3a2a999999996cNyoYkytbdH4THKSRX3G1:Z1z6pLxa999999996cgoYkytbdH4zKSw
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2