e9d6d940ea9eb9d44accbecc9de6b28bf71fb1583b72f1627987c76c50186475 | Triage

Sharing

General

Target

1270129e048044cc8559fe9a415ef3d6
Size

14KB
Sample

231219-nepsesahej
MD5

1270129e048044cc8559fe9a415ef3d6
SHA1

f778d1454743f681de39a8117f2c2fc17b140731
SHA256

e9d6d940ea9eb9d44accbecc9de6b28bf71fb1583b72f1627987c76c50186475
SHA512

e3eaa0de8e4453da3684888b392fd3fc90460d80f7d5b52b1cc8b1e4c1042d6aa61e6910cbbfd9c935902d97bd7cd97944999026298e4e8667692e24944356ae
SSDEEP

384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4Yh4cz2:hDXWipuE+K3/SSHgx72

Score

7^/10

Malware Config

Targets

- Target
  
  1270129e048044cc8559fe9a415ef3d6
- Size
  
  14KB
- MD5
  
  1270129e048044cc8559fe9a415ef3d6
- SHA1
  
  f778d1454743f681de39a8117f2c2fc17b140731
- SHA256
  
  e9d6d940ea9eb9d44accbecc9de6b28bf71fb1583b72f1627987c76c50186475
- SHA512
  
  e3eaa0de8e4453da3684888b392fd3fc90460d80f7d5b52b1cc8b1e4c1042d6aa61e6910cbbfd9c935902d97bd7cd97944999026298e4e8667692e24944356ae
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4Yh4cz2:hDXWipuE+K3/SSHgx72
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2