5401baa7272a1223a11689c2e74b6ad171a3dbe70b1a7ba6a14d84db6350267b | Triage

Sharing

General

Target

7accea52f3411a6079cf3cb4ee01c6b0_NEAS
Size

36KB
Sample

240507-gqem9scb21
MD5

7accea52f3411a6079cf3cb4ee01c6b0
SHA1

a5afa5c4e252b2da8b5f7bd20e58100ad9968192
SHA256

5401baa7272a1223a11689c2e74b6ad171a3dbe70b1a7ba6a14d84db6350267b
SHA512

4d87dbb1c23db5320b9dd65a06ac5655781c7b7cdcd0b76d163a776462b4d8b7d24989dd8c940323d8be8c51e404a8a73e5234a2919d0ca097614988207e4b78
SSDEEP

768:fTz7y3lhsT+hs1SQtOOtEvwDpjfAu9+4j:fT+hsMQMOtEvwDpjoIHj

Score

7^/10

Malware Config

Targets

- Target
  
  7accea52f3411a6079cf3cb4ee01c6b0_NEAS
- Size
  
  36KB
- MD5
  
  7accea52f3411a6079cf3cb4ee01c6b0
- SHA1
  
  a5afa5c4e252b2da8b5f7bd20e58100ad9968192
- SHA256
  
  5401baa7272a1223a11689c2e74b6ad171a3dbe70b1a7ba6a14d84db6350267b
- SHA512
  
  4d87dbb1c23db5320b9dd65a06ac5655781c7b7cdcd0b76d163a776462b4d8b7d24989dd8c940323d8be8c51e404a8a73e5234a2919d0ca097614988207e4b78
- SSDEEP
  
  768:fTz7y3lhsT+hs1SQtOOtEvwDpjfAu9+4j:fT+hsMQMOtEvwDpjoIHj
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2