2a7241523a5637f99b0bd3deb6be0ef66bd21ce0c5db89a2946e4d7980d1ca44 | Triage

Sharing

General

Target

NEAS.c1f2f8c8acb4036d259af9f9159d4ca0.exe
Size

63KB
Sample

231014-xwgmtahg33
MD5

c1f2f8c8acb4036d259af9f9159d4ca0
SHA1

165e95985f45ac37771a6c98b6749e2a873fb197
SHA256

2a7241523a5637f99b0bd3deb6be0ef66bd21ce0c5db89a2946e4d7980d1ca44
SHA512

198b46711719f529ea05f7dc1344e09333244909f1bd3942d28a646f7e670a33aba32c98ffb0a65adb3ee4dd2c2afac51731f2d868757f4d0a4dacde26004437
SSDEEP

768:pzprmog4dAIVMNKRX58U4/sGAqAjzXNuL/1H5oVEamrUTvn93b7NRDMFME3eUgU:pdmog4RyNKgPj8k9+VuEn9rjDHE

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.c1f2f8c8acb4036d259af9f9159d4ca0.exe
- Size
  
  63KB
- MD5
  
  c1f2f8c8acb4036d259af9f9159d4ca0
- SHA1
  
  165e95985f45ac37771a6c98b6749e2a873fb197
- SHA256
  
  2a7241523a5637f99b0bd3deb6be0ef66bd21ce0c5db89a2946e4d7980d1ca44
- SHA512
  
  198b46711719f529ea05f7dc1344e09333244909f1bd3942d28a646f7e670a33aba32c98ffb0a65adb3ee4dd2c2afac51731f2d868757f4d0a4dacde26004437
- SSDEEP
  
  768:pzprmog4dAIVMNKRX58U4/sGAqAjzXNuL/1H5oVEamrUTvn93b7NRDMFME3eUgU:pdmog4RyNKgPj8k9+VuEn9rjDHE
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2