8d9a1d442be7d73b01146cf1a505b89831e79a6f1958765fd4baaef8b6dff9d0 | Triage

Sharing

General

Target

NEAS.d166f84c9465ea4da0c4461d8d217ea0.exe
Size

37KB
Sample

231101-rnq9dsgb2w
MD5

d166f84c9465ea4da0c4461d8d217ea0
SHA1

3e28919620e5961b5720d445fc66a5665f457913
SHA256

8d9a1d442be7d73b01146cf1a505b89831e79a6f1958765fd4baaef8b6dff9d0
SHA512

7a4eb1e92732bd8584bb04e9ff8f5e6e8842ff914aad94edd9ec1c2a836aa4cbcae8c64c97d03c51ed988c0a89ded021d519476c0cd9a92a831ec317f56b17ed
SSDEEP

768:sAI5y4MnESa8AELv4Y3xXJrv5KtWCwQgaV:skEuANY3BrqwQgaV

Score

7^/10

Malware Config

Targets

- Target
  
  NEAS.d166f84c9465ea4da0c4461d8d217ea0.exe
- Size
  
  37KB
- MD5
  
  d166f84c9465ea4da0c4461d8d217ea0
- SHA1
  
  3e28919620e5961b5720d445fc66a5665f457913
- SHA256
  
  8d9a1d442be7d73b01146cf1a505b89831e79a6f1958765fd4baaef8b6dff9d0
- SHA512
  
  7a4eb1e92732bd8584bb04e9ff8f5e6e8842ff914aad94edd9ec1c2a836aa4cbcae8c64c97d03c51ed988c0a89ded021d519476c0cd9a92a831ec317f56b17ed
- SSDEEP
  
  768:sAI5y4MnESa8AELv4Y3xXJrv5KtWCwQgaV:skEuANY3BrqwQgaV
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2