faead1ef660c8435de6943af421a94f83468fe8dea9dba71ada4f72855d36b1d | Triage

Sharing

General

Target

faead1ef660c8435de6943af421a94f83468fe8dea9dba71ada4f72855d36b1dN.exe
Size

32KB
Sample

241119-spnekaxeqh
MD5

15a6aaff0cb10484e369b2dc65d47700
SHA1

2389ed4c58e8d2ac258c5f94cfe91c4513fa5cbc
SHA256

faead1ef660c8435de6943af421a94f83468fe8dea9dba71ada4f72855d36b1d
SHA512

24654e47d8ace08db14d6f27742cde2eaf29e4db715114f8291026b6c9c18a7cefb0180fda753691356f84fc60f12963fea7b2a40e361c3b8dfd7e8c28638826
SSDEEP

384:tq+t53vTACi4M7xY78nBflYSgT1PaF9KlZhHRj/qZUzhOHO7AokM:DV9iL7xYAnBq5QFQrhHRTqq8HO7yM

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  faead1ef660c8435de6943af421a94f83468fe8dea9dba71ada4f72855d36b1dN.exe
- Size
  
  32KB
- MD5
  
  15a6aaff0cb10484e369b2dc65d47700
- SHA1
  
  2389ed4c58e8d2ac258c5f94cfe91c4513fa5cbc
- SHA256
  
  faead1ef660c8435de6943af421a94f83468fe8dea9dba71ada4f72855d36b1d
- SHA512
  
  24654e47d8ace08db14d6f27742cde2eaf29e4db715114f8291026b6c9c18a7cefb0180fda753691356f84fc60f12963fea7b2a40e361c3b8dfd7e8c28638826
- SSDEEP
  
  384:tq+t53vTACi4M7xY78nBflYSgT1PaF9KlZhHRj/qZUzhOHO7AokM:DV9iL7xYAnBq5QFQrhHRTqq8HO7yM
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2