42335fd78b2122dc8f74498c942a1bbb8097e5641e9eef32c70d50f7983b4295 | Triage

Sharing

General

Target

NEAS.c23402ad4d902e1315bf2312f66e5a00.exe
Size

49KB
Sample

231014-xwhj4sfh6t
MD5

c23402ad4d902e1315bf2312f66e5a00
SHA1

0cd163902d295fbfb1825d573a37bf314a271d77
SHA256

42335fd78b2122dc8f74498c942a1bbb8097e5641e9eef32c70d50f7983b4295
SHA512

16a17d5259284f03a268f70745934b045067d990445dc245c42b5f4ee753d62fd8389e19d8bd422467a3356ad55e3532b873d13f311f2764a9eaf996905e0bfe
SSDEEP

768:E4h+4hKKHaCLN39FWp8A4j4jzj0CPvCUX5Aomgij4utK/1H5O2Xdnh:E4Fh/LN39FWp8A4j4jzjXCyeomZ8IQt

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.c23402ad4d902e1315bf2312f66e5a00.exe
- Size
  
  49KB
- MD5
  
  c23402ad4d902e1315bf2312f66e5a00
- SHA1
  
  0cd163902d295fbfb1825d573a37bf314a271d77
- SHA256
  
  42335fd78b2122dc8f74498c942a1bbb8097e5641e9eef32c70d50f7983b4295
- SHA512
  
  16a17d5259284f03a268f70745934b045067d990445dc245c42b5f4ee753d62fd8389e19d8bd422467a3356ad55e3532b873d13f311f2764a9eaf996905e0bfe
- SSDEEP
  
  768:E4h+4hKKHaCLN39FWp8A4j4jzj0CPvCUX5Aomgij4utK/1H5O2Xdnh:E4Fh/LN39FWp8A4j4jzjXCyeomZ8IQt
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2