ce327cc173238dbd60e87bc8a02f754cf3d80bae3f5833e447bdf43be1d6d556 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

NEAS.NEASd8dbe29e7afde0b63b69ffc58dbabc50exe.exe
Size

67KB
Sample

231013-ydwjpaea21
MD5

d8dbe29e7afde0b63b69ffc58dbabc50
SHA1

39a59f59652a770d8dfd0508b9b9a6bae82486f7
SHA256

ce327cc173238dbd60e87bc8a02f754cf3d80bae3f5833e447bdf43be1d6d556
SHA512

8851bed3194240d800d1302105ee82166efbb2f6d8527626cb46bda1bbee7478f7e5ad7c785e5436dc537309db3ba24c4765082c8e3342696486f57559ac7d36
SSDEEP

1536:WLtrgNM7fgkgpNsZfEC1FKuG2ResJifTduD4oTxw:8jgkgpNsZcCXD5esJibdMTxw

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.NEASd8dbe29e7afde0b63b69ffc58dbabc50exe.exe
- Size
  
  67KB
- MD5
  
  d8dbe29e7afde0b63b69ffc58dbabc50
- SHA1
  
  39a59f59652a770d8dfd0508b9b9a6bae82486f7
- SHA256
  
  ce327cc173238dbd60e87bc8a02f754cf3d80bae3f5833e447bdf43be1d6d556
- SHA512
  
  8851bed3194240d800d1302105ee82166efbb2f6d8527626cb46bda1bbee7478f7e5ad7c785e5436dc537309db3ba24c4765082c8e3342696486f57559ac7d36
- SSDEEP
  
  1536:WLtrgNM7fgkgpNsZfEC1FKuG2ResJifTduD4oTxw:8jgkgpNsZcCXD5esJibdMTxw
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2