45dcd376d08611b9b82fac5e0eb4387042d679030c845bdd1e51dd5931e28758 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

NEAS.dbdf8ffd230fb56662090d9f5fec0160.exe
Size

82KB
Sample

231014-j7klysag57
MD5

dbdf8ffd230fb56662090d9f5fec0160
SHA1

b51d928659804aec9133c19922b14eead8ce4b4a
SHA256

45dcd376d08611b9b82fac5e0eb4387042d679030c845bdd1e51dd5931e28758
SHA512

0676bf8ac0f7ce3446fb84ea3b76b4843ad558cfa67df31690c53f6bf3b67f06828dc80fffa25513b2b234a630aea36465e04a56b1f0c7d5006c2d72b021c187
SSDEEP

1536:Pay0ZATZ72H3w9qhUS2L74pm6+wDSmQFN6TiN1sJtvQu:Sy0ZICH3w9qhUEpm6tm7N6TO1SpD

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.dbdf8ffd230fb56662090d9f5fec0160.exe
- Size
  
  82KB
- MD5
  
  dbdf8ffd230fb56662090d9f5fec0160
- SHA1
  
  b51d928659804aec9133c19922b14eead8ce4b4a
- SHA256
  
  45dcd376d08611b9b82fac5e0eb4387042d679030c845bdd1e51dd5931e28758
- SHA512
  
  0676bf8ac0f7ce3446fb84ea3b76b4843ad558cfa67df31690c53f6bf3b67f06828dc80fffa25513b2b234a630aea36465e04a56b1f0c7d5006c2d72b021c187
- SSDEEP
  
  1536:Pay0ZATZ72H3w9qhUS2L74pm6+wDSmQFN6TiN1sJtvQu:Sy0ZICH3w9qhUEpm6tm7N6TO1SpD
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2