ecc3bb84f2f20800903d95ad732d6de07566602870da609ee2b9feb142ec2cad | Triage

Sharing

Copy URL Twitter E-mail

General

Target

NEAS.bd90740609e33e6db1fb1af3a610a960.exe
Size

104KB
Sample

231101-rmn3msfc7x
MD5

bd90740609e33e6db1fb1af3a610a960
SHA1

6b8577036a1629778f4a81c81ee8dfd302532278
SHA256

ecc3bb84f2f20800903d95ad732d6de07566602870da609ee2b9feb142ec2cad
SHA512

25bc5d693eb55a9aafd1f3ff2da84801a4e037f52b55ccbc0a57c19ecd4c32a77943bcbac478e41a6434c5ea2dc73c099ed457b3a22b83de2c5cefc4ae230901
SSDEEP

384:ZoYprlBYprDaiMXYaymDvjvNspS7x7XP2S7D8o97bAN:ZoalBaDaJvymASx+m197bW

Score

7^/10

Malware Config

Targets

- Target
  
  NEAS.bd90740609e33e6db1fb1af3a610a960.exe
- Size
  
  104KB
- MD5
  
  bd90740609e33e6db1fb1af3a610a960
- SHA1
  
  6b8577036a1629778f4a81c81ee8dfd302532278
- SHA256
  
  ecc3bb84f2f20800903d95ad732d6de07566602870da609ee2b9feb142ec2cad
- SHA512
  
  25bc5d693eb55a9aafd1f3ff2da84801a4e037f52b55ccbc0a57c19ecd4c32a77943bcbac478e41a6434c5ea2dc73c099ed457b3a22b83de2c5cefc4ae230901
- SSDEEP
  
  384:ZoYprlBYprDaiMXYaymDvjvNspS7x7XP2S7D8o97bAN:ZoalBaDaJvymASx+m197bW
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2