a19dc53803c64a0f2aec41930ef10799c790032f813e92c31964ef31c1f20d65 | Triage

Sharing

General

Target

NEAS.e9ed7148d596c9e1f8a1865df64cb2a0.exe
Size

621KB
Sample

231115-a8vzmshe38
MD5

e9ed7148d596c9e1f8a1865df64cb2a0
SHA1

cc15d83b6fc2b42662320acb21afdeb5cf3727e2
SHA256

a19dc53803c64a0f2aec41930ef10799c790032f813e92c31964ef31c1f20d65
SHA512

1c143094dd48d8fd6cc638ee9f2ed79dc7154a3278baee884aaf8441aae3dd3d15111c7c462c22fd2bde4f9d99801b767199231a3390a13847ef7900f81e0531
SSDEEP

6144:dqDAwl0xPTMiR9JSSxPUKYGdodH2USiZTK40g:d+67XR9JSSxvYGdodH2UvRK4L

Score

7^/10

Malware Config

Targets

- Target
  
  NEAS.e9ed7148d596c9e1f8a1865df64cb2a0.exe
- Size
  
  621KB
- MD5
  
  e9ed7148d596c9e1f8a1865df64cb2a0
- SHA1
  
  cc15d83b6fc2b42662320acb21afdeb5cf3727e2
- SHA256
  
  a19dc53803c64a0f2aec41930ef10799c790032f813e92c31964ef31c1f20d65
- SHA512
  
  1c143094dd48d8fd6cc638ee9f2ed79dc7154a3278baee884aaf8441aae3dd3d15111c7c462c22fd2bde4f9d99801b767199231a3390a13847ef7900f81e0531
- SSDEEP
  
  6144:dqDAwl0xPTMiR9JSSxPUKYGdodH2USiZTK40g:d+67XR9JSSxvYGdodH2UvRK4L
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2