393dd6bd54aaf69887f7cdaa19d68570ddd5c908bdddeb89d2138005308e2b1a | Triage

Sharing

Copy URL Twitter E-mail

General

Target

NEAS.c80186c0ad3160d65c112e8bc235f1a0.exe
Size

90KB
Sample

231014-xw434sgc8v
MD5

c80186c0ad3160d65c112e8bc235f1a0
SHA1

7a430ec678cf751400563122af76c4babaa4b2f7
SHA256

393dd6bd54aaf69887f7cdaa19d68570ddd5c908bdddeb89d2138005308e2b1a
SHA512

5eb1586b9a906aaa92d09ccce454cfe7f36e92cb73dfa3f5c3447a4368e2c7a8d7643707b5f6ea485f64573e309451a8e52b46ae23ff725005ca13be7a45a38d
SSDEEP

1536:L+6Wv7h42KjWh/qosEepq342Fdvz3KOX7fOOQ/4BrGTI5Yxj:LVyhKjAhmq342DKOjU/4kT0Yxj

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.c80186c0ad3160d65c112e8bc235f1a0.exe
- Size
  
  90KB
- MD5
  
  c80186c0ad3160d65c112e8bc235f1a0
- SHA1
  
  7a430ec678cf751400563122af76c4babaa4b2f7
- SHA256
  
  393dd6bd54aaf69887f7cdaa19d68570ddd5c908bdddeb89d2138005308e2b1a
- SHA512
  
  5eb1586b9a906aaa92d09ccce454cfe7f36e92cb73dfa3f5c3447a4368e2c7a8d7643707b5f6ea485f64573e309451a8e52b46ae23ff725005ca13be7a45a38d
- SSDEEP
  
  1536:L+6Wv7h42KjWh/qosEepq342Fdvz3KOX7fOOQ/4BrGTI5Yxj:LVyhKjAhmq342DKOjU/4kT0Yxj
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2