4f250ee1c0f5f6611b2bd4598aa00c9061b8437467972c0211a0c0a88f7bb398 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

NEAS.77dda3d5295da927a602d76d024706f0.exe
Size

117KB
Sample

231105-3hsqtaga63
MD5

77dda3d5295da927a602d76d024706f0
SHA1

36007b31de2aaf986a1cc9bbbe8ad94a4ce6e5fb
SHA256

4f250ee1c0f5f6611b2bd4598aa00c9061b8437467972c0211a0c0a88f7bb398
SHA512

925a08f54461cd3bdb99a48853fce20dfec82affc4683f8b56132c33fbdedf312862e42f962c90ffc5a909a06c5de358ad53a2df3ab7cde4cbf742fa96caa534
SSDEEP

384:cZ6ztbnwR2h5+IK67anERYhqt1MFILH/APPY5ItTm4J2Pcj2+8fcxbBcYTB:cZ6JDwRZfhXILHIPPY5mm4J2Pw2DfO3

Score

7^/10

Malware Config

Targets

- Target
  
  NEAS.77dda3d5295da927a602d76d024706f0.exe
- Size
  
  117KB
- MD5
  
  77dda3d5295da927a602d76d024706f0
- SHA1
  
  36007b31de2aaf986a1cc9bbbe8ad94a4ce6e5fb
- SHA256
  
  4f250ee1c0f5f6611b2bd4598aa00c9061b8437467972c0211a0c0a88f7bb398
- SHA512
  
  925a08f54461cd3bdb99a48853fce20dfec82affc4683f8b56132c33fbdedf312862e42f962c90ffc5a909a06c5de358ad53a2df3ab7cde4cbf742fa96caa534
- SSDEEP
  
  384:cZ6ztbnwR2h5+IK67anERYhqt1MFILH/APPY5ItTm4J2Pcj2+8fcxbBcYTB:cZ6JDwRZfhXILHIPPY5mm4J2Pw2DfO3
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2