2bfb1459a32729a124a59106d3099f1962dcc64a1435f35beaf14331a0fec976 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

NEAS.1ec3d41d8394575d4f0d4317d9083730.exe
Size

55KB
Sample

231013-yr7twagh86
MD5

1ec3d41d8394575d4f0d4317d9083730
SHA1

7d288875b94def323426b261e806cd2ac9aef257
SHA256

2bfb1459a32729a124a59106d3099f1962dcc64a1435f35beaf14331a0fec976
SHA512

8ba8da9e6317c4a31d11a7ccf2dc53cdb443c911312cb6ddf29a7a1514c9aeb761c56eebc889a7ec7a4af0e12c9f0bdbd80fac9e672ae263004887cf204005da
SSDEEP

768:Cimtnoulc2w/FbkfKF7cPg9FewKqYHP30w9hD2dJ8DTg9EwwmMPS2bF1BnqMqf/7:sTc9bkfIV+1v0w9hhDEhwmMzjgvlw

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.1ec3d41d8394575d4f0d4317d9083730.exe
- Size
  
  55KB
- MD5
  
  1ec3d41d8394575d4f0d4317d9083730
- SHA1
  
  7d288875b94def323426b261e806cd2ac9aef257
- SHA256
  
  2bfb1459a32729a124a59106d3099f1962dcc64a1435f35beaf14331a0fec976
- SHA512
  
  8ba8da9e6317c4a31d11a7ccf2dc53cdb443c911312cb6ddf29a7a1514c9aeb761c56eebc889a7ec7a4af0e12c9f0bdbd80fac9e672ae263004887cf204005da
- SSDEEP
  
  768:Cimtnoulc2w/FbkfKF7cPg9FewKqYHP30w9hD2dJ8DTg9EwwmMPS2bF1BnqMqf/7:sTc9bkfIV+1v0w9hhDEhwmMzjgvlw
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2