cdbbe3216b9f6f04191e01c6b26329e7db0ec798524560965c335776a5900e59 | Triage

Sharing

General

Target

NEAS.603a8c29907150fe09a361a5aabd8a00.exe
Size

39KB
Sample

231112-yy3thabc9x
MD5

603a8c29907150fe09a361a5aabd8a00
SHA1

47da16f75c05fdc000a4845d360177654b5733b8
SHA256

cdbbe3216b9f6f04191e01c6b26329e7db0ec798524560965c335776a5900e59
SHA512

c4106dd1464aad6736205ab0ae19f2a77599c33d6a7d642caef4ede5fe814880870309027d47085c48e4ba410af6d5219e776786feab5595c41c57f2bf28498b
SSDEEP

768:45ZFuzgxucryOmJQqO3VhDWiNlW+O96QhlqZU9jTuMdeNvEO:4579ucrFmJQqO3VhDWiC+i6Q/jaMdCv5

Score

7^/10

Malware Config

Targets

- Target
  
  NEAS.603a8c29907150fe09a361a5aabd8a00.exe
- Size
  
  39KB
- MD5
  
  603a8c29907150fe09a361a5aabd8a00
- SHA1
  
  47da16f75c05fdc000a4845d360177654b5733b8
- SHA256
  
  cdbbe3216b9f6f04191e01c6b26329e7db0ec798524560965c335776a5900e59
- SHA512
  
  c4106dd1464aad6736205ab0ae19f2a77599c33d6a7d642caef4ede5fe814880870309027d47085c48e4ba410af6d5219e776786feab5595c41c57f2bf28498b
- SSDEEP
  
  768:45ZFuzgxucryOmJQqO3VhDWiNlW+O96QhlqZU9jTuMdeNvEO:4579ucrFmJQqO3VhDWiC+i6Q/jaMdCv5
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2