25f5c0d35a41296fa5fe19bcbc3f4270fb8287d64945919bea0c99cb042aebe0 | Triage

Sharing

General

Target

NEAS.d9b7905cdee0e25d5a588d35f0b01250.exe
Size

448KB
Sample

231021-1eq2psca28
MD5

d9b7905cdee0e25d5a588d35f0b01250
SHA1

c468f6b1618028d7796e31ee1e04e978e1910741
SHA256

25f5c0d35a41296fa5fe19bcbc3f4270fb8287d64945919bea0c99cb042aebe0
SHA512

c8afa9fdd324dd3530f9af10baf4f92796a96c7744d4c7236bcc689ef2698adadab48e0bae52574b992175963e26af6217a19973fceeb0de7e8d6264fd17ec45
SSDEEP

6144:TzXYK2bG/r1bsZR3eGLGs3fGEOmbsZR3eGLG/ggBc7hfbsZR3eGLGs3fGEOmbsZ+:TzH2bG/NsZ5ZvX/sZ5P1sZ5ZvX/sZ5

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.d9b7905cdee0e25d5a588d35f0b01250.exe
- Size
  
  448KB
- MD5
  
  d9b7905cdee0e25d5a588d35f0b01250
- SHA1
  
  c468f6b1618028d7796e31ee1e04e978e1910741
- SHA256
  
  25f5c0d35a41296fa5fe19bcbc3f4270fb8287d64945919bea0c99cb042aebe0
- SHA512
  
  c8afa9fdd324dd3530f9af10baf4f92796a96c7744d4c7236bcc689ef2698adadab48e0bae52574b992175963e26af6217a19973fceeb0de7e8d6264fd17ec45
- SSDEEP
  
  6144:TzXYK2bG/r1bsZR3eGLGs3fGEOmbsZR3eGLG/ggBc7hfbsZR3eGLGs3fGEOmbsZ+:TzH2bG/NsZ5ZvX/sZ5P1sZ5ZvX/sZ5
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2