3df385300ab7018a025c6910bc2f4533cd6e087822e1731db0697113d1569850 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

5a7ea96e9293f37f86ef25b467b1e300_NEAS
Size

200KB
Sample

240507-nlvbgsdh7v
MD5

5a7ea96e9293f37f86ef25b467b1e300
SHA1

003f81d5a6de0f3ec71cec22eb27700f10d155a1
SHA256

3df385300ab7018a025c6910bc2f4533cd6e087822e1731db0697113d1569850
SHA512

619763067c8a810de9e52976a39eed7cc7be034554a896a29d65016454898888906481c4530a893d4046a964ec95f203f656dfc299b8f2cbbe3de6e680b393f1
SSDEEP

3072:qUsBUCT+s3y4CpCfCGCCOCwC9CvCFCfCLCvCUCLC2FInROUSRSGSuSQSmSNS4SQ8:qeCT+s3yGFInRO

Score

7^/10

Malware Config

Targets

- Target
  
  5a7ea96e9293f37f86ef25b467b1e300_NEAS
- Size
  
  200KB
- MD5
  
  5a7ea96e9293f37f86ef25b467b1e300
- SHA1
  
  003f81d5a6de0f3ec71cec22eb27700f10d155a1
- SHA256
  
  3df385300ab7018a025c6910bc2f4533cd6e087822e1731db0697113d1569850
- SHA512
  
  619763067c8a810de9e52976a39eed7cc7be034554a896a29d65016454898888906481c4530a893d4046a964ec95f203f656dfc299b8f2cbbe3de6e680b393f1
- SSDEEP
  
  3072:qUsBUCT+s3y4CpCfCGCCOCwC9CvCFCfCLCvCUCLC2FInROUSRSGSuSQSmSNS4SQ8:qeCT+s3yGFInRO
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2