e6dcf6d75b76e6212887c72e30933d53185cd72dfc176ebeb83cbad76beff287 | Triage

Sharing

General

Target

NEAS.d98c8c6ee21a85418e1fd30032b35750.exe
Size

446KB
Sample

231014-xywvhsbb58
MD5

d98c8c6ee21a85418e1fd30032b35750
SHA1

3d641788d11e15e33d4551e285a88e8bfaa3996c
SHA256

e6dcf6d75b76e6212887c72e30933d53185cd72dfc176ebeb83cbad76beff287
SHA512

0fe0f6bdddbc95633077c7fb30dc4ca16acd88e99f35f65a1a4fdac37d55d73fbbf96c58f41015bbaac4174440314dbf9c3861802447fb86bebfba80feaa105f
SSDEEP

6144:fqvjvGEbPOwXYrMdlvkGr0f+uPOwXYrMdlsLS7De:iLvGLwIaJwIdSy

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.d98c8c6ee21a85418e1fd30032b35750.exe
- Size
  
  446KB
- MD5
  
  d98c8c6ee21a85418e1fd30032b35750
- SHA1
  
  3d641788d11e15e33d4551e285a88e8bfaa3996c
- SHA256
  
  e6dcf6d75b76e6212887c72e30933d53185cd72dfc176ebeb83cbad76beff287
- SHA512
  
  0fe0f6bdddbc95633077c7fb30dc4ca16acd88e99f35f65a1a4fdac37d55d73fbbf96c58f41015bbaac4174440314dbf9c3861802447fb86bebfba80feaa105f
- SSDEEP
  
  6144:fqvjvGEbPOwXYrMdlvkGr0f+uPOwXYrMdlsLS7De:iLvGLwIaJwIdSy
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2