1e931a4d3ebfe8898d326eed16c65332c89d317ea9f9e72b4158cfc5aa9e277b | Triage

Sharing

Copy URL Twitter E-mail

General

Target

NEAS.eece9bc1e99e96a09c554304e57b26a0.exe
Size

359KB
Sample

231022-v4c89aae81
MD5

eece9bc1e99e96a09c554304e57b26a0
SHA1

6356d9d649401a4fd65270b0c9ebb23299b74176
SHA256

1e931a4d3ebfe8898d326eed16c65332c89d317ea9f9e72b4158cfc5aa9e277b
SHA512

540806fa0c2e49eb5fa57ef6022754bd56aec94d6e2209efb26c9bcc1e41956b53b842bd3ca87b2fe5fd8d63d3855d43a7b01746270c11fb3b23f870ea3b57e6
SSDEEP

3072:iBxJUPY7NKYTmeKu0kQI8Va3CkfUVuyelbvP5lkzmQ1o0Otw44KmfpKivFM6Wpq5:i9D5KYTBKuprba4Yb31/doG

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.eece9bc1e99e96a09c554304e57b26a0.exe
- Size
  
  359KB
- MD5
  
  eece9bc1e99e96a09c554304e57b26a0
- SHA1
  
  6356d9d649401a4fd65270b0c9ebb23299b74176
- SHA256
  
  1e931a4d3ebfe8898d326eed16c65332c89d317ea9f9e72b4158cfc5aa9e277b
- SHA512
  
  540806fa0c2e49eb5fa57ef6022754bd56aec94d6e2209efb26c9bcc1e41956b53b842bd3ca87b2fe5fd8d63d3855d43a7b01746270c11fb3b23f870ea3b57e6
- SSDEEP
  
  3072:iBxJUPY7NKYTmeKu0kQI8Va3CkfUVuyelbvP5lkzmQ1o0Otw44KmfpKivFM6Wpq5:i9D5KYTBKuprba4Yb31/doG
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2