595153bd79c54f233f7a7ee9e8eafc1bfb0b115ba081e4b81fa987d9a30518a6 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

NEAS.c4d0a063d3ace1baef2a1942360bbb10.exe
Size

98KB
Sample

231022-v1l2zsgf4z
MD5

c4d0a063d3ace1baef2a1942360bbb10
SHA1

41507198b44062c61f217be8f8327bb42efedce6
SHA256

595153bd79c54f233f7a7ee9e8eafc1bfb0b115ba081e4b81fa987d9a30518a6
SHA512

48bffcc6b0825230d82ed3f8b13a604fc8ec6a916ec83ca304db80cee4775fd0bfbef7efa2efc9cf6d9b4a17584af062241996795ba30c8c7c45d5cb0d21f2c5
SSDEEP

3072:U7zvlcTW+naX0cwSEneFKPD375lHzpa1P:ccT6X0TSEneYr75lHzpaF

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.c4d0a063d3ace1baef2a1942360bbb10.exe
- Size
  
  98KB
- MD5
  
  c4d0a063d3ace1baef2a1942360bbb10
- SHA1
  
  41507198b44062c61f217be8f8327bb42efedce6
- SHA256
  
  595153bd79c54f233f7a7ee9e8eafc1bfb0b115ba081e4b81fa987d9a30518a6
- SHA512
  
  48bffcc6b0825230d82ed3f8b13a604fc8ec6a916ec83ca304db80cee4775fd0bfbef7efa2efc9cf6d9b4a17584af062241996795ba30c8c7c45d5cb0d21f2c5
- SSDEEP
  
  3072:U7zvlcTW+naX0cwSEneFKPD375lHzpa1P:ccT6X0TSEneYr75lHzpaF
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2