840fbb2449f2e64f4a3f2a2e4b8d317624e5b4a9b9e5fd5a6ab5f7ae41a6ab8d | Triage

Sharing

General

Target

NEAS.c94d805ba7c500e7af370ee2be6e9450.exe
Size

380KB
Sample

231022-v1r81agg2z
MD5

c94d805ba7c500e7af370ee2be6e9450
SHA1

3f9eaded70ac0e0c45e088f51f2770c9b1666731
SHA256

840fbb2449f2e64f4a3f2a2e4b8d317624e5b4a9b9e5fd5a6ab5f7ae41a6ab8d
SHA512

d79dfe14360e7f8395f622ee17b0db8760ae0028de61f1e22ae981a540a6e0845408156fff9e48a5ca0484bee3bf1fdbc65edcf96ab3af78884eb0a71cce05f5
SSDEEP

3072:mEGh0omlPOiDOe2MUVg3bHrH/HqOYGb+4QnZZIne+rcC4F0fJGRIS8Rfd7eQEcGw:mEG8l7Oe2MUVg3v2IneKcAEcARy

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.c94d805ba7c500e7af370ee2be6e9450.exe
- Size
  
  380KB
- MD5
  
  c94d805ba7c500e7af370ee2be6e9450
- SHA1
  
  3f9eaded70ac0e0c45e088f51f2770c9b1666731
- SHA256
  
  840fbb2449f2e64f4a3f2a2e4b8d317624e5b4a9b9e5fd5a6ab5f7ae41a6ab8d
- SHA512
  
  d79dfe14360e7f8395f622ee17b0db8760ae0028de61f1e22ae981a540a6e0845408156fff9e48a5ca0484bee3bf1fdbc65edcf96ab3af78884eb0a71cce05f5
- SSDEEP
  
  3072:mEGh0omlPOiDOe2MUVg3bHrH/HqOYGb+4QnZZIne+rcC4F0fJGRIS8Rfd7eQEcGw:mEG8l7Oe2MUVg3v2IneKcAEcARy
Score

8^/10

persistence
- Modifies Installed Components in the registry
  persistence
- Deletes itself
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2