fa81c62a053e46662e6d97e934e3cb674416bdb75b0bf8f4f8bcb2c10ec93ead | Triage

Sharing

General

Target

NEAS.c05e0d8a22d308e198e8a22241d15760.exe
Size

33KB
Sample

231103-qczwqaag7t
MD5

c05e0d8a22d308e198e8a22241d15760
SHA1

2f78ad4693a701d7bc792d2bd6c04f6651fa8e05
SHA256

fa81c62a053e46662e6d97e934e3cb674416bdb75b0bf8f4f8bcb2c10ec93ead
SHA512

300b2af8e9903f564fed882f120261c463f6924ef9b3546aaaedbd0a4b7d39023db4d9962de2efb12e67e7eb49c58d2268192930a0a6803b20605ccfccbb141a
SSDEEP

384:2Mv0aVJOt2obD3/HhzF8N+HBnFIy+YPe6xagk58sCub2bmqgUCEj0odhYgcHfvPM:373OtJDvhzNsyXk58sCuS3g69dKxvKr

Score

7^/10

Malware Config

Targets

- Target
  
  NEAS.c05e0d8a22d308e198e8a22241d15760.exe
- Size
  
  33KB
- MD5
  
  c05e0d8a22d308e198e8a22241d15760
- SHA1
  
  2f78ad4693a701d7bc792d2bd6c04f6651fa8e05
- SHA256
  
  fa81c62a053e46662e6d97e934e3cb674416bdb75b0bf8f4f8bcb2c10ec93ead
- SHA512
  
  300b2af8e9903f564fed882f120261c463f6924ef9b3546aaaedbd0a4b7d39023db4d9962de2efb12e67e7eb49c58d2268192930a0a6803b20605ccfccbb141a
- SSDEEP
  
  384:2Mv0aVJOt2obD3/HhzF8N+HBnFIy+YPe6xagk58sCub2bmqgUCEj0odhYgcHfvPM:373OtJDvhzNsyXk58sCuS3g69dKxvKr
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2