95a11c5e549e68f2783e82764de68d907ab14ce46551ba5a9e1447a8061ea186 | Triage

Sharing

General

Target

NEAS.2954352fda49b9b3534d70514c1cdc80.exe
Size

66KB
Sample

231014-wdz6rsad85
MD5

2954352fda49b9b3534d70514c1cdc80
SHA1

be8a1be687c2a517b471183ae36b9315ccd1f51e
SHA256

95a11c5e549e68f2783e82764de68d907ab14ce46551ba5a9e1447a8061ea186
SHA512

a6c50c8e3e9493b0202d6ac73822d2606016ecf735632e83cd0dfb20b1b880fb953a5582383f38e543cb4470ad44dc5b5697ce1f94fe87bd48490324e29dab18
SSDEEP

1536:6vWo7oaTw0Sysjqezn96hMnB5cVEC19rv411uz527qTVUn:aw0Ejqe796hkks11uVTy

Score

8^/10

discovery

Malware Config

Targets

- Target
  
  NEAS.2954352fda49b9b3534d70514c1cdc80.exe
- Size
  
  66KB
- MD5
  
  2954352fda49b9b3534d70514c1cdc80
- SHA1
  
  be8a1be687c2a517b471183ae36b9315ccd1f51e
- SHA256
  
  95a11c5e549e68f2783e82764de68d907ab14ce46551ba5a9e1447a8061ea186
- SHA512
  
  a6c50c8e3e9493b0202d6ac73822d2606016ecf735632e83cd0dfb20b1b880fb953a5582383f38e543cb4470ad44dc5b5697ce1f94fe87bd48490324e29dab18
- SSDEEP
  
  1536:6vWo7oaTw0Sysjqezn96hMnB5cVEC19rv411uz527qTVUn:aw0Ejqe796hkks11uVTy
Score

8^/10

discovery
- Contacts a large (622) amount of remote hosts
  This may indicate a network scan to discover remotely running services.
  discovery
- Executes dropped EXE
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Network Service Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2