c8c0f199d77d6240c26884269661e9d61c6a6bab1a05598c179519306c94dc3e | Triage

Sharing

Copy URL Twitter E-mail

General

Target

NEAS.d5a0256a83be8f1020bbde7e02ed54b0.exe
Size

121KB
Sample

231014-xye7rsah73
MD5

d5a0256a83be8f1020bbde7e02ed54b0
SHA1

88a4f46e296328fce624cfbacc320a5b796c277e
SHA256

c8c0f199d77d6240c26884269661e9d61c6a6bab1a05598c179519306c94dc3e
SHA512

20cd0b2f55112911f07333a306ee667480468a532f40d6122b66f5cd7073837c879dcccd5740bbe830a78389f4bdf6057d841883545c0ad1af949c1a643321f1
SSDEEP

3072:qrRx7hXBaVdAZCMuxVTA1IxO7AJnD5tvv:EhX43kJMVC4Oarvv

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.d5a0256a83be8f1020bbde7e02ed54b0.exe
- Size
  
  121KB
- MD5
  
  d5a0256a83be8f1020bbde7e02ed54b0
- SHA1
  
  88a4f46e296328fce624cfbacc320a5b796c277e
- SHA256
  
  c8c0f199d77d6240c26884269661e9d61c6a6bab1a05598c179519306c94dc3e
- SHA512
  
  20cd0b2f55112911f07333a306ee667480468a532f40d6122b66f5cd7073837c879dcccd5740bbe830a78389f4bdf6057d841883545c0ad1af949c1a643321f1
- SSDEEP
  
  3072:qrRx7hXBaVdAZCMuxVTA1IxO7AJnD5tvv:EhX43kJMVC4Oarvv
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2