f0e51d327f0631e2d6b54cad745f221423b9bdc712748ea836788eee11b54b59 | Triage

Sharing

General

Target

2ea393f1778f2852cf192fcaac42d510_NEIKI
Size

42KB
Sample

240507-zngc7aaa47
MD5

2ea393f1778f2852cf192fcaac42d510
SHA1

22687dae4a1d88ca94ef8cf89a7e400ac918dd0f
SHA256

f0e51d327f0631e2d6b54cad745f221423b9bdc712748ea836788eee11b54b59
SHA512

e676db27bf056d5e9a82e4271792e743d63f7ac396ca2e39a7cfaa577a3061bea3bd30e5bc22f90afcab43da5921c1ce13653ee09f4bf6d170f8796fb55dcea7
SSDEEP

768:X6LsoEEeegiZPvEhHSG+gp/QtOOtEvwDpjBVaD3TP7DFHuRcD95p:X6QFElP6n+gJQMOtEvwDpjBmzDkWDrp

Score

7^/10

Malware Config

Targets

- Target
  
  2ea393f1778f2852cf192fcaac42d510_NEIKI
- Size
  
  42KB
- MD5
  
  2ea393f1778f2852cf192fcaac42d510
- SHA1
  
  22687dae4a1d88ca94ef8cf89a7e400ac918dd0f
- SHA256
  
  f0e51d327f0631e2d6b54cad745f221423b9bdc712748ea836788eee11b54b59
- SHA512
  
  e676db27bf056d5e9a82e4271792e743d63f7ac396ca2e39a7cfaa577a3061bea3bd30e5bc22f90afcab43da5921c1ce13653ee09f4bf6d170f8796fb55dcea7
- SSDEEP
  
  768:X6LsoEEeegiZPvEhHSG+gp/QtOOtEvwDpjBVaD3TP7DFHuRcD95p:X6QFElP6n+gJQMOtEvwDpjBmzDkWDrp
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2