8d4d180b99cc1eb580873a168bccd08cea0c8d808fd104389ddd8f1b5b3d09dc | Triage

Sharing

Copy URL Twitter E-mail

General

Target

NEAS.2323ef4fe8c362309484789affac28e0.exe
Size

332KB
Sample

231013-ysgn3shb63
MD5

2323ef4fe8c362309484789affac28e0
SHA1

e9c6c323695213e51937f979f16aa56a5d2d2dff
SHA256

8d4d180b99cc1eb580873a168bccd08cea0c8d808fd104389ddd8f1b5b3d09dc
SHA512

ca06ec09560d300a9848e110706595e6befe8831c501272b15adaa531e81ddaecfcd800df3fb15c4625918926889dbdf1c08f4c43468f7f86024cfdf9f2ebd8c
SSDEEP

6144:fNkvzZA9or018hr1R6xie8opqXgKTpgtYOWlGmMvkqAlDiyUvpQf4vt74mD50e4G:ilA9orN1RFpogXnV4MlGN1AlDkvXvtxh

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.2323ef4fe8c362309484789affac28e0.exe
- Size
  
  332KB
- MD5
  
  2323ef4fe8c362309484789affac28e0
- SHA1
  
  e9c6c323695213e51937f979f16aa56a5d2d2dff
- SHA256
  
  8d4d180b99cc1eb580873a168bccd08cea0c8d808fd104389ddd8f1b5b3d09dc
- SHA512
  
  ca06ec09560d300a9848e110706595e6befe8831c501272b15adaa531e81ddaecfcd800df3fb15c4625918926889dbdf1c08f4c43468f7f86024cfdf9f2ebd8c
- SSDEEP
  
  6144:fNkvzZA9or018hr1R6xie8opqXgKTpgtYOWlGmMvkqAlDiyUvpQf4vt74mD50e4G:ilA9orN1RFpogXnV4MlGN1AlDkvXvtxh
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2