9a6a2bc54ee6059efac5e6a9fc256d6b4f0021ac4dc97e85eda1f5c13b9ee4f0 | Triage

Sharing

General

Target

NEAS.a2271473e0a35c4c152e5b2543edd540.exe
Size

49KB
Sample

231101-rk1zesec4v
MD5

a2271473e0a35c4c152e5b2543edd540
SHA1

091a7cc9799f4b382a801521bcd94557687cfbc7
SHA256

9a6a2bc54ee6059efac5e6a9fc256d6b4f0021ac4dc97e85eda1f5c13b9ee4f0
SHA512

1c8c62eb20ae9e0b03ed382d300fc15e15b7c8369ac283aec9b328e7d93ba82cdc1873eb83ed9bcc875f76e01782d86d93169e0892ce304ccce05a1f1b5735d1
SSDEEP

768:3vKPjUJap1c1LpH8l43dvY55xnED4VbSWi/BRRK:3iUWa1N8lqdvY55BED4VeWiZXK

Score

7^/10

Malware Config

Targets

- Target
  
  NEAS.a2271473e0a35c4c152e5b2543edd540.exe
- Size
  
  49KB
- MD5
  
  a2271473e0a35c4c152e5b2543edd540
- SHA1
  
  091a7cc9799f4b382a801521bcd94557687cfbc7
- SHA256
  
  9a6a2bc54ee6059efac5e6a9fc256d6b4f0021ac4dc97e85eda1f5c13b9ee4f0
- SHA512
  
  1c8c62eb20ae9e0b03ed382d300fc15e15b7c8369ac283aec9b328e7d93ba82cdc1873eb83ed9bcc875f76e01782d86d93169e0892ce304ccce05a1f1b5735d1
- SSDEEP
  
  768:3vKPjUJap1c1LpH8l43dvY55xnED4VbSWi/BRRK:3iUWa1N8lqdvY55BED4VeWiZXK
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2