9796763276a885fd35a511e9a5916ecd85bb41799474338b220d0f8dd9ba1c19 | Triage

Sharing

General

Target

NEAS.2d56b5337a3b71b9df233c3cb1b312d0.exe
Size

121KB
Sample

231101-q8wtyaag4x
MD5

2d56b5337a3b71b9df233c3cb1b312d0
SHA1

efe9e0c086699617d7bbbfca70aa710ae64000be
SHA256

9796763276a885fd35a511e9a5916ecd85bb41799474338b220d0f8dd9ba1c19
SHA512

9e167e1bedcef4772f5f9f6094e92a00a7315402f1f2f3964b98dce122e984b136592385c5bf13f8c97518d056b31aca37c9ab3178dfc4da2e8d00df2788adfb
SSDEEP

768:gUQz7yVEhs9+4T/1bytOOtEvwDpjNbZ7uyA36S7MpxRIIXVe3mU9TYwlOBTG0J4Z:gUj+AIMOtEvwDpjNbwQEIPlemUhY2nZ

Score

7^/10

Malware Config

Targets

- Target
  
  NEAS.2d56b5337a3b71b9df233c3cb1b312d0.exe
- Size
  
  121KB
- MD5
  
  2d56b5337a3b71b9df233c3cb1b312d0
- SHA1
  
  efe9e0c086699617d7bbbfca70aa710ae64000be
- SHA256
  
  9796763276a885fd35a511e9a5916ecd85bb41799474338b220d0f8dd9ba1c19
- SHA512
  
  9e167e1bedcef4772f5f9f6094e92a00a7315402f1f2f3964b98dce122e984b136592385c5bf13f8c97518d056b31aca37c9ab3178dfc4da2e8d00df2788adfb
- SSDEEP
  
  768:gUQz7yVEhs9+4T/1bytOOtEvwDpjNbZ7uyA36S7MpxRIIXVe3mU9TYwlOBTG0J4Z:gUj+AIMOtEvwDpjNbwQEIPlemUhY2nZ
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2