e053c06db3933a959530e768e3e0327e1feeef8913e29cbfa61a4c6e15d57ac5 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

NEAS.4438baace75f70871deae15b36f93c40.exe
Size

76KB
Sample

231101-q962asbd8v
MD5

4438baace75f70871deae15b36f93c40
SHA1

74f5099f8b010b63f49762e161c33bb8538ff30c
SHA256

e053c06db3933a959530e768e3e0327e1feeef8913e29cbfa61a4c6e15d57ac5
SHA512

c28813a46fcac4b44b4b2fa09b1d659e7b3211f77585d37d910f75aa5bff9d64d8fb709d6c0969fc701880cc5f4883b53ed0b285921575d049a1874e6597982a
SSDEEP

768:EsJhM/47dTkc8jmiG/7H1SE3KGdA6jVS2bnKHtIGA8/nVNEcoX7zPjqEifb6o:EAA4R43e/7VOEjs2FRP2E6bB

Score

7^/10

Malware Config

Targets

- Target
  
  NEAS.4438baace75f70871deae15b36f93c40.exe
- Size
  
  76KB
- MD5
  
  4438baace75f70871deae15b36f93c40
- SHA1
  
  74f5099f8b010b63f49762e161c33bb8538ff30c
- SHA256
  
  e053c06db3933a959530e768e3e0327e1feeef8913e29cbfa61a4c6e15d57ac5
- SHA512
  
  c28813a46fcac4b44b4b2fa09b1d659e7b3211f77585d37d910f75aa5bff9d64d8fb709d6c0969fc701880cc5f4883b53ed0b285921575d049a1874e6597982a
- SSDEEP
  
  768:EsJhM/47dTkc8jmiG/7H1SE3KGdA6jVS2bnKHtIGA8/nVNEcoX7zPjqEifb6o:EAA4R43e/7VOEjs2FRP2E6bB
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2