9db13ce50c6c46f8c7e406b205e129ac5d67c8ff25b7c8e2fdc2d37d214b62b1 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

NEAS.825478abcc886f90bc7c4c328e8ad860.exe
Size

66KB
Sample

231014-wm463sce4v
MD5

825478abcc886f90bc7c4c328e8ad860
SHA1

be86dc6f6db5ba6d228aecd9a7c9505d8cf37fce
SHA256

9db13ce50c6c46f8c7e406b205e129ac5d67c8ff25b7c8e2fdc2d37d214b62b1
SHA512

04eb843c24cb6e5d8ae320353518be907a825aaaf6b33c1e47af49db8e40b5c5c4c1a6c6538b8205a1dcd319f363c990154c41c8231235aa08000b5e04a706ac
SSDEEP

1536:J77IfhzAKcm13eZtx0Kfln8FgW2u+nD1uT1ZtJLa:J77Ohzlcm136tlfJW2HnxuDLa

Score

8^/10

discovery

Malware Config

Targets

- Target
  
  NEAS.825478abcc886f90bc7c4c328e8ad860.exe
- Size
  
  66KB
- MD5
  
  825478abcc886f90bc7c4c328e8ad860
- SHA1
  
  be86dc6f6db5ba6d228aecd9a7c9505d8cf37fce
- SHA256
  
  9db13ce50c6c46f8c7e406b205e129ac5d67c8ff25b7c8e2fdc2d37d214b62b1
- SHA512
  
  04eb843c24cb6e5d8ae320353518be907a825aaaf6b33c1e47af49db8e40b5c5c4c1a6c6538b8205a1dcd319f363c990154c41c8231235aa08000b5e04a706ac
- SSDEEP
  
  1536:J77IfhzAKcm13eZtx0Kfln8FgW2u+nD1uT1ZtJLa:J77Ohzlcm136tlfJW2HnxuDLa
Score

8^/10

discovery
- Contacts a large (501) amount of remote hosts
  This may indicate a network scan to discover remotely running services.
  discovery
- Executes dropped EXE
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Network Service Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2