58416b176f97c07e7126d53c56c5b039f78adedbc6fb67094855548ee3b8f7ba | Triage

Sharing

Copy URL Twitter E-mail

General

Target

NEAS.d846d479240efa3313bcce9534725190_JC.exe
Size

1.8MB
Sample

231103-zrn77sac6v
MD5

d846d479240efa3313bcce9534725190
SHA1

a6b3be5f81edf6e2823a19dac1b6eb882357a174
SHA256

58416b176f97c07e7126d53c56c5b039f78adedbc6fb67094855548ee3b8f7ba
SHA512

236e6e4df70c483a4147729df34efea387c0e810fbbe60c26f79d5900bb6091d1845d0cadb194f594e4214f96a85c59e56671354b0c702fd6d54ebba609be67d
SSDEEP

49152:wWhr59BfJXAE+UJDyWh2Rmwj++kA75EVdZod:wWhrPBfKEneWhumwq/Qq6

Score

7^/10

Malware Config

Targets

- Target
  
  NEAS.d846d479240efa3313bcce9534725190_JC.exe
- Size
  
  1.8MB
- MD5
  
  d846d479240efa3313bcce9534725190
- SHA1
  
  a6b3be5f81edf6e2823a19dac1b6eb882357a174
- SHA256
  
  58416b176f97c07e7126d53c56c5b039f78adedbc6fb67094855548ee3b8f7ba
- SHA512
  
  236e6e4df70c483a4147729df34efea387c0e810fbbe60c26f79d5900bb6091d1845d0cadb194f594e4214f96a85c59e56671354b0c702fd6d54ebba609be67d
- SSDEEP
  
  49152:wWhr59BfJXAE+UJDyWh2Rmwj++kA75EVdZod:wWhrPBfKEneWhumwq/Qq6
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2