aa61f32cf418e84435877db71e34c1b5a2f012cca6f347d7ecab8cc4abc4ead1 | Triage

Sharing

General

Target

NEAS.fb411c534374ff57e8631f12e8acf150.exe
Size

15KB
Sample

231101-rraqtabd33
MD5

fb411c534374ff57e8631f12e8acf150
SHA1

9e80e087da9517521919c88c530786b3f7edccbe
SHA256

aa61f32cf418e84435877db71e34c1b5a2f012cca6f347d7ecab8cc4abc4ead1
SHA512

0e517586ca6e59054b9fb2cdbd8cff6aa7c173598eb6a111f1d54d366e6a6cd1a50f120bcd197c75c8fe94268b21d0b78e334eb7115521e9386f2dcd3d5ab6f6
SSDEEP

192:0s9c0nyIDNEMGKivXObLUrrSEHY/sI1/HncYtF:zPDNExKMebyrSyohcYn

Score

7^/10

Malware Config

Targets

- Target
  
  NEAS.fb411c534374ff57e8631f12e8acf150.exe
- Size
  
  15KB
- MD5
  
  fb411c534374ff57e8631f12e8acf150
- SHA1
  
  9e80e087da9517521919c88c530786b3f7edccbe
- SHA256
  
  aa61f32cf418e84435877db71e34c1b5a2f012cca6f347d7ecab8cc4abc4ead1
- SHA512
  
  0e517586ca6e59054b9fb2cdbd8cff6aa7c173598eb6a111f1d54d366e6a6cd1a50f120bcd197c75c8fe94268b21d0b78e334eb7115521e9386f2dcd3d5ab6f6
- SSDEEP
  
  192:0s9c0nyIDNEMGKivXObLUrrSEHY/sI1/HncYtF:zPDNExKMebyrSyohcYn
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2