78c3fde111eccac4b392a50d24469dbae288e711a6b0c38e80d9fe9dd31559d9 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

NEAS.6eb4c5bdb30d105853ddd16326786290.exe
Size

20KB
Sample

231105-zl3teacd7w
MD5

6eb4c5bdb30d105853ddd16326786290
SHA1

93f7ca33f2420afa60be56e1af37b07c701ef2fe
SHA256

78c3fde111eccac4b392a50d24469dbae288e711a6b0c38e80d9fe9dd31559d9
SHA512

b3f8678e491c7b8546376af7871c8bcdaeaa9e27dfbd0f028d9b012d2c466b7b6909e03789c897d3224bd9acad7397b4475052f7dabad49d99d535cd116222de
SSDEEP

384:iTjB4f0y4lSqCHHffYZ5SKNOI5pbzCZYCKdKj+RtdFuO3:Q406H/0PbzCdj+Rtm+

Score

7^/10

Malware Config

Targets

- Target
  
  NEAS.6eb4c5bdb30d105853ddd16326786290.exe
- Size
  
  20KB
- MD5
  
  6eb4c5bdb30d105853ddd16326786290
- SHA1
  
  93f7ca33f2420afa60be56e1af37b07c701ef2fe
- SHA256
  
  78c3fde111eccac4b392a50d24469dbae288e711a6b0c38e80d9fe9dd31559d9
- SHA512
  
  b3f8678e491c7b8546376af7871c8bcdaeaa9e27dfbd0f028d9b012d2c466b7b6909e03789c897d3224bd9acad7397b4475052f7dabad49d99d535cd116222de
- SSDEEP
  
  384:iTjB4f0y4lSqCHHffYZ5SKNOI5pbzCZYCKdKj+RtdFuO3:Q406H/0PbzCdj+Rtm+
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2