d7e4b918ae8848371eb4d9d394637f53b14e90a282508e98d30b3a1f0828595b | Triage

Sharing

General

Target

NEAS.531c36ae95bafcb3d9e2d2523d26b03f.exe
Size

97KB
Sample

231112-vga6dahf79
MD5

531c36ae95bafcb3d9e2d2523d26b03f
SHA1

2d4dd22b2fa17cd5ac9fae2684b128db8203e85f
SHA256

d7e4b918ae8848371eb4d9d394637f53b14e90a282508e98d30b3a1f0828595b
SHA512

5ef5181fc847083386a3c0eec7ed77708c17f6f6dcf6d3bda495b6d5d0b16aea8fd448acba5997c0c125269a3acebe258cf49e63cb6432dc9291151d251a8a80
SSDEEP

1536:czfMMknJvVvwlTHavNbA8w9KxlO9Lc3Otp15wKwYPpLKb:KfMbJOZHaV7wdZcm19w6p8

Score

7^/10

Malware Config

Targets

- Target
  
  NEAS.531c36ae95bafcb3d9e2d2523d26b03f.exe
- Size
  
  97KB
- MD5
  
  531c36ae95bafcb3d9e2d2523d26b03f
- SHA1
  
  2d4dd22b2fa17cd5ac9fae2684b128db8203e85f
- SHA256
  
  d7e4b918ae8848371eb4d9d394637f53b14e90a282508e98d30b3a1f0828595b
- SHA512
  
  5ef5181fc847083386a3c0eec7ed77708c17f6f6dcf6d3bda495b6d5d0b16aea8fd448acba5997c0c125269a3acebe258cf49e63cb6432dc9291151d251a8a80
- SSDEEP
  
  1536:czfMMknJvVvwlTHavNbA8w9KxlO9Lc3Otp15wKwYPpLKb:KfMbJOZHaV7wdZcm19w6p8
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2