b15079a7c820f6dbd06bab844043ae9030cdaca13901666a85705a4cbc4d61f3 | Triage

Sharing

General

Target

NEAS.f4f0428f5d1c49b75c7c3456c6b7db60_JC.exe
Size

145KB
Sample

231103-bfwadahg4s
MD5

f4f0428f5d1c49b75c7c3456c6b7db60
SHA1

585cac14ab56ccbecd25dba698f91ff937ee8bec
SHA256

b15079a7c820f6dbd06bab844043ae9030cdaca13901666a85705a4cbc4d61f3
SHA512

d2a6a0dfcd9930084273c495b13a7ff48bafccfe230b31f839ab0792f3e5375d00a90036e20a0bcb0e01bb8fc1643ec553249b6bc85b8e1c342d0de158da7874
SSDEEP

3072:06G5HOoWBx3xrBx41z8QcMrgD56G5H26G5HOoWBx3xrBx4OFggF6G5HOoWB:FGpV1z8QXjGp/GpVOKGp

Score

7^/10

Malware Config

Targets

- Target
  
  NEAS.f4f0428f5d1c49b75c7c3456c6b7db60_JC.exe
- Size
  
  145KB
- MD5
  
  f4f0428f5d1c49b75c7c3456c6b7db60
- SHA1
  
  585cac14ab56ccbecd25dba698f91ff937ee8bec
- SHA256
  
  b15079a7c820f6dbd06bab844043ae9030cdaca13901666a85705a4cbc4d61f3
- SHA512
  
  d2a6a0dfcd9930084273c495b13a7ff48bafccfe230b31f839ab0792f3e5375d00a90036e20a0bcb0e01bb8fc1643ec553249b6bc85b8e1c342d0de158da7874
- SSDEEP
  
  3072:06G5HOoWBx3xrBx41z8QcMrgD56G5H26G5HOoWBx3xrBx4OFggF6G5HOoWB:FGpV1z8QXjGp/GpVOKGp
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Remote System Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2