1926d4c3549f1ae4d6c1237829f91668096cecae8d516468b1faf9aa19edcf78 | Triage

Sharing

General

Target

NEAS.ce9156263814785c0c4a828d6675bf70.exe
Size

874KB
Sample

231107-ajhm1sgf7y
MD5

ce9156263814785c0c4a828d6675bf70
SHA1

aa4b1d817b2a0e9c0650555c4a4858777810d343
SHA256

1926d4c3549f1ae4d6c1237829f91668096cecae8d516468b1faf9aa19edcf78
SHA512

921d396133c0f45eda61ac1c644b1f495bce4844add5f2b197671ccc57d94612c7a0516484f8e46acc14dac8997d835a76cba9d5388a0a0d5e52ffe738ae25b0
SSDEEP

12288:d+67XR9JSSxvYGdodHEDQ4LWfxWmZcazAii49Xoab2w:d+6N986Y7Fv

Score

7^/10

Malware Config

Targets

- Target
  
  NEAS.ce9156263814785c0c4a828d6675bf70.exe
- Size
  
  874KB
- MD5
  
  ce9156263814785c0c4a828d6675bf70
- SHA1
  
  aa4b1d817b2a0e9c0650555c4a4858777810d343
- SHA256
  
  1926d4c3549f1ae4d6c1237829f91668096cecae8d516468b1faf9aa19edcf78
- SHA512
  
  921d396133c0f45eda61ac1c644b1f495bce4844add5f2b197671ccc57d94612c7a0516484f8e46acc14dac8997d835a76cba9d5388a0a0d5e52ffe738ae25b0
- SSDEEP
  
  12288:d+67XR9JSSxvYGdodHEDQ4LWfxWmZcazAii49Xoab2w:d+6N986Y7Fv
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2