6dc65f4dc94dc46b0226c0dcc1a9713b7af7eb36a58bd4b9ea98e1b381b96b74 | Triage

Sharing

General

Target

NEAS.f097c75eff9ea2a7b770845863028660.exe
Size

359KB
Sample

231021-1gjemsdc73
MD5

f097c75eff9ea2a7b770845863028660
SHA1

04c6877445bff836e221a8bc5d1edafd22c9b033
SHA256

6dc65f4dc94dc46b0226c0dcc1a9713b7af7eb36a58bd4b9ea98e1b381b96b74
SHA512

368e1ae4dbe1d37f10e40751bc7ff5e618b3e1f102222aef49a8a5457eea9ddc4fa7aa5ee5696d1118831ef5db1010d3c4ccc6913951018bdd8faf78b39cd359
SSDEEP

3072:/I2RxqF1MpAeRnls0kQI8Va3CkfUVuyelbvP5lkzmQ1o0Otw44KmfpKivFM6Wpq5:w2Rxyq6prba4Yb31/doG

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.f097c75eff9ea2a7b770845863028660.exe
- Size
  
  359KB
- MD5
  
  f097c75eff9ea2a7b770845863028660
- SHA1
  
  04c6877445bff836e221a8bc5d1edafd22c9b033
- SHA256
  
  6dc65f4dc94dc46b0226c0dcc1a9713b7af7eb36a58bd4b9ea98e1b381b96b74
- SHA512
  
  368e1ae4dbe1d37f10e40751bc7ff5e618b3e1f102222aef49a8a5457eea9ddc4fa7aa5ee5696d1118831ef5db1010d3c4ccc6913951018bdd8faf78b39cd359
- SSDEEP
  
  3072:/I2RxqF1MpAeRnls0kQI8Va3CkfUVuyelbvP5lkzmQ1o0Otw44KmfpKivFM6Wpq5:w2Rxyq6prba4Yb31/doG
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2