f3a6dcebebd493c400f624f90e0d689af61921fec52a8c39ace7e734c7a748e9 | Triage

Sharing

General

Target

NEAS.a5c04c779a8b4d242b4d3ed05c834250.exe
Size

224KB
Sample

231101-rk9assed6y
MD5

a5c04c779a8b4d242b4d3ed05c834250
SHA1

c8cbae73fc238792dacc11bb524dddf884b85578
SHA256

f3a6dcebebd493c400f624f90e0d689af61921fec52a8c39ace7e734c7a748e9
SHA512

b66ddbddc1618faf0324558a8bc60328d156677bb1de1e148d9d271fcc6ceba13b4c3425884175f2ba831316349f621e3bda3e5f49dcd1623a1f1e77b011f428
SSDEEP

3072:GG9Kzi2viq3+pRhCjG8G3GbGVGBGfGuGxGWYcrf6KadU:GG0zi6j+pRAYcD6Kad

Score

7^/10

Malware Config

Targets

- Target
  
  NEAS.a5c04c779a8b4d242b4d3ed05c834250.exe
- Size
  
  224KB
- MD5
  
  a5c04c779a8b4d242b4d3ed05c834250
- SHA1
  
  c8cbae73fc238792dacc11bb524dddf884b85578
- SHA256
  
  f3a6dcebebd493c400f624f90e0d689af61921fec52a8c39ace7e734c7a748e9
- SHA512
  
  b66ddbddc1618faf0324558a8bc60328d156677bb1de1e148d9d271fcc6ceba13b4c3425884175f2ba831316349f621e3bda3e5f49dcd1623a1f1e77b011f428
- SSDEEP
  
  3072:GG9Kzi2viq3+pRhCjG8G3GbGVGBGfGuGxGWYcrf6KadU:GG0zi6j+pRAYcD6Kad
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2