e885427ec927155aa8a1057f7b34538891f30f3330073e47c05bec1848808e9f | Triage

Sharing

Copy URL Twitter E-mail

General

Target

NEAS.f0488ad414b27666537859a4604fa420.exe
Size

23KB
Sample

231101-rqnahshd3t
MD5

f0488ad414b27666537859a4604fa420
SHA1

c412619862b74b837df50a80d0a1950f2d806b0d
SHA256

e885427ec927155aa8a1057f7b34538891f30f3330073e47c05bec1848808e9f
SHA512

cef0580bbb1b18893cdd8fe162da15499b91a5d94b4da74cfaf53f2070427ff85113e21ef3188207074bccae75f483fd0e1ac5d56266d0771bf8d6b90951da67
SSDEEP

384:cstTQ6ymVaIOanfRDrE1G3JRvwNUsu7csOcS4PmA0VZM:LQTmV7OofEGM8j/jPnUZM

Score

7^/10

Malware Config

Targets

- Target
  
  NEAS.f0488ad414b27666537859a4604fa420.exe
- Size
  
  23KB
- MD5
  
  f0488ad414b27666537859a4604fa420
- SHA1
  
  c412619862b74b837df50a80d0a1950f2d806b0d
- SHA256
  
  e885427ec927155aa8a1057f7b34538891f30f3330073e47c05bec1848808e9f
- SHA512
  
  cef0580bbb1b18893cdd8fe162da15499b91a5d94b4da74cfaf53f2070427ff85113e21ef3188207074bccae75f483fd0e1ac5d56266d0771bf8d6b90951da67
- SSDEEP
  
  384:cstTQ6ymVaIOanfRDrE1G3JRvwNUsu7csOcS4PmA0VZM:LQTmV7OofEGM8j/jPnUZM
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2