a89d654a04e1ecab4904c914ff58243d5453885b03c4326e7b5fdf1de3542002 | Triage

Sharing

General

Target

NEAS.d580ac9ca8244f0653df0e9430af90a0.exe
Size

256KB
Sample

231013-zh23pshc2x
MD5

d580ac9ca8244f0653df0e9430af90a0
SHA1

efbc9345ae46b1ad6619cf2b09eb2f5a65509663
SHA256

a89d654a04e1ecab4904c914ff58243d5453885b03c4326e7b5fdf1de3542002
SHA512

e9758b305b80a4a3d2ae56be074dff73de8c1cbfe3409e6adcd6b90360b95aad2d679d1d55e0b646af5978840748766e12b9ea4e6ca9857e3b3a0ef1644413b7
SSDEEP

6144:kqtGV1bbo4rQD85k/hQO+zrWnAdqjeOpKfduBU:z4NrQg5W/+zrWAI5KFuU

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.d580ac9ca8244f0653df0e9430af90a0.exe
- Size
  
  256KB
- MD5
  
  d580ac9ca8244f0653df0e9430af90a0
- SHA1
  
  efbc9345ae46b1ad6619cf2b09eb2f5a65509663
- SHA256
  
  a89d654a04e1ecab4904c914ff58243d5453885b03c4326e7b5fdf1de3542002
- SHA512
  
  e9758b305b80a4a3d2ae56be074dff73de8c1cbfe3409e6adcd6b90360b95aad2d679d1d55e0b646af5978840748766e12b9ea4e6ca9857e3b3a0ef1644413b7
- SSDEEP
  
  6144:kqtGV1bbo4rQD85k/hQO+zrWnAdqjeOpKfduBU:z4NrQg5W/+zrWAI5KFuU
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2