77fafdb63594e606b0a3352934e350109089c793a1ac3fb9d8477050f7c2e107 | Triage

Sharing

General

Target

NEAS.d04c694bf62bf4689f4734b5ee00f3e0_JC.exe
Size

143KB
Sample

231105-xsfw4saf8s
MD5

d04c694bf62bf4689f4734b5ee00f3e0
SHA1

fc6de3e8ec847c0531332890f1c038a026c6b529
SHA256

77fafdb63594e606b0a3352934e350109089c793a1ac3fb9d8477050f7c2e107
SHA512

7e41dfd48686f8510cda701d513bfaa529c8fa32bfa24c41639d01fa2a17dc043cc8fdb046c22b80a0a1eccbb037ff81e16ed7aa917a56854ab425ccb18ec037
SSDEEP

3072:PC5AvbKpzDaDEi/u1SAeh76kSxczsN+pTxG8o4EX5Si8UUKAsdAbOa31:P9vbAHUoTxkkMU4xGJX5Si8Ud2iaF

Score

7^/10

Malware Config

Targets

- Target
  
  NEAS.d04c694bf62bf4689f4734b5ee00f3e0_JC.exe
- Size
  
  143KB
- MD5
  
  d04c694bf62bf4689f4734b5ee00f3e0
- SHA1
  
  fc6de3e8ec847c0531332890f1c038a026c6b529
- SHA256
  
  77fafdb63594e606b0a3352934e350109089c793a1ac3fb9d8477050f7c2e107
- SHA512
  
  7e41dfd48686f8510cda701d513bfaa529c8fa32bfa24c41639d01fa2a17dc043cc8fdb046c22b80a0a1eccbb037ff81e16ed7aa917a56854ab425ccb18ec037
- SSDEEP
  
  3072:PC5AvbKpzDaDEi/u1SAeh76kSxczsN+pTxG8o4EX5Si8UUKAsdAbOa31:P9vbAHUoTxkkMU4xGJX5Si8Ud2iaF
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2