dfd06d0a9ac49834a2b426edb943cbe285831f42a108f7592ffd6097dd06f522 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

NEAS.b0a1843aaf9a35adf867318df56bcd40.exe
Size

181KB
Sample

231013-zc965aeb2w
MD5

b0a1843aaf9a35adf867318df56bcd40
SHA1

074d7b22fdfd20e51e201cb184086de28575a252
SHA256

dfd06d0a9ac49834a2b426edb943cbe285831f42a108f7592ffd6097dd06f522
SHA512

e83207e9bb14368ccbee741a54152c89a2b55d917ac88ec7e05a593a9672463316196e256d4e893b8ad6ddfb477bfa37d1a5ede067f8196c5aec83c685b3f502
SSDEEP

3072:h6tchyinW3kgIhxGYzwK9YF8xjnw89JnszQcJdXOf:ein4kXxxzwQYF8xF52dXi

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.b0a1843aaf9a35adf867318df56bcd40.exe
- Size
  
  181KB
- MD5
  
  b0a1843aaf9a35adf867318df56bcd40
- SHA1
  
  074d7b22fdfd20e51e201cb184086de28575a252
- SHA256
  
  dfd06d0a9ac49834a2b426edb943cbe285831f42a108f7592ffd6097dd06f522
- SHA512
  
  e83207e9bb14368ccbee741a54152c89a2b55d917ac88ec7e05a593a9672463316196e256d4e893b8ad6ddfb477bfa37d1a5ede067f8196c5aec83c685b3f502
- SSDEEP
  
  3072:h6tchyinW3kgIhxGYzwK9YF8xjnw89JnszQcJdXOf:ein4kXxxzwQYF8xF52dXi
Score

8^/10

persistence
- Modifies AppInit DLL entries
  persistence
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2