a6ad29a682fd6a7cf38df045f7a5ccd51e60e632405606ddf28498bc356dc9c7 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

NEAS.d4dacc913c03a7ac17a9caf24910e4c0.exe
Size

30KB
Sample

231102-vcf6tsdc34
MD5

d4dacc913c03a7ac17a9caf24910e4c0
SHA1

f3c1975ec76e3239a16ba4f56d5cc634e63bc098
SHA256

a6ad29a682fd6a7cf38df045f7a5ccd51e60e632405606ddf28498bc356dc9c7
SHA512

29a036ac8c71744762dedd74ac3d2d9ea02c978cf0767131065077dac3e3168b75784c57d868a70ba60120c94b5f49d89656f03ec59421034e701de4f045b957
SSDEEP

192:RBVfonwR21BA/WjOU8EdmXDDl3A5I/J+n:xfonwR21BFjF8amlbJe

Score

7^/10

Malware Config

Targets

- Target
  
  NEAS.d4dacc913c03a7ac17a9caf24910e4c0.exe
- Size
  
  30KB
- MD5
  
  d4dacc913c03a7ac17a9caf24910e4c0
- SHA1
  
  f3c1975ec76e3239a16ba4f56d5cc634e63bc098
- SHA256
  
  a6ad29a682fd6a7cf38df045f7a5ccd51e60e632405606ddf28498bc356dc9c7
- SHA512
  
  29a036ac8c71744762dedd74ac3d2d9ea02c978cf0767131065077dac3e3168b75784c57d868a70ba60120c94b5f49d89656f03ec59421034e701de4f045b957
- SSDEEP
  
  192:RBVfonwR21BA/WjOU8EdmXDDl3A5I/J+n:xfonwR21BFjF8amlbJe
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2