bdfc839027e1f8b031e7f04d77bd875e754ce2c8accaf513a1ba79dc45cb2428 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

NEAS.d5363c1f5edc74fc7e48a5e24d0ae2c0.exe
Size

269KB
Sample

231013-zh2f6shb9x
MD5

d5363c1f5edc74fc7e48a5e24d0ae2c0
SHA1

098d7e82eb6ef1c067ed4de1e2b08ca32e522b25
SHA256

bdfc839027e1f8b031e7f04d77bd875e754ce2c8accaf513a1ba79dc45cb2428
SHA512

d972809bcbef10600d0830638fb7bba190815819051e06e34186913c8e7e0c28f063d7fad448049cdd129adee577e6553e610abc26004939a219e178dc847de2
SSDEEP

6144:aXL31jIDX4EYtCwGtMtkiXOoloMr1JeSldqP7+x55Kmj50GXoCcmASBTw2AXC21Y:a77ChtMtkM71r1MSXqPix55KI5fX/cTy

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.d5363c1f5edc74fc7e48a5e24d0ae2c0.exe
- Size
  
  269KB
- MD5
  
  d5363c1f5edc74fc7e48a5e24d0ae2c0
- SHA1
  
  098d7e82eb6ef1c067ed4de1e2b08ca32e522b25
- SHA256
  
  bdfc839027e1f8b031e7f04d77bd875e754ce2c8accaf513a1ba79dc45cb2428
- SHA512
  
  d972809bcbef10600d0830638fb7bba190815819051e06e34186913c8e7e0c28f063d7fad448049cdd129adee577e6553e610abc26004939a219e178dc847de2
- SSDEEP
  
  6144:aXL31jIDX4EYtCwGtMtkiXOoloMr1JeSldqP7+x55Kmj50GXoCcmASBTw2AXC21Y:a77ChtMtkM71r1MSXqPix55KI5fX/cTy
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2