ad41715251c9bbf8799f74c119ae36633c5503a24d810a330fbd3cc4cd28c00a | Triage

Sharing

General

Target

NEAS.0e3baa4a5958cfc6c75b731f2e8fd1d0.exe
Size

3.0MB
Sample

231022-vaej8ada56
MD5

0e3baa4a5958cfc6c75b731f2e8fd1d0
SHA1

3e21f79a280ff4dc048235794e737d7a32ebb6ea
SHA256

ad41715251c9bbf8799f74c119ae36633c5503a24d810a330fbd3cc4cd28c00a
SHA512

c3fd9a7cbaa4d9f90682cb15d51f9d9e5d776631bc9370d4fb0c3dba227f94e7bf619f037eb8b405d0b527f11d50f5cf26d70a2c2602218dc56a28116e55f30f
SSDEEP

49152:j495UciMmq/NhjX5p3JOCdLAweZnE5c965nqqIP2Itdo:jk5LhzACdLAlnE5co5nqqIP2Itdo

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  NEAS.0e3baa4a5958cfc6c75b731f2e8fd1d0.exe
- Size
  
  3.0MB
- MD5
  
  0e3baa4a5958cfc6c75b731f2e8fd1d0
- SHA1
  
  3e21f79a280ff4dc048235794e737d7a32ebb6ea
- SHA256
  
  ad41715251c9bbf8799f74c119ae36633c5503a24d810a330fbd3cc4cd28c00a
- SHA512
  
  c3fd9a7cbaa4d9f90682cb15d51f9d9e5d776631bc9370d4fb0c3dba227f94e7bf619f037eb8b405d0b527f11d50f5cf26d70a2c2602218dc56a28116e55f30f
- SSDEEP
  
  49152:j495UciMmq/NhjX5p3JOCdLAweZnE5c965nqqIP2Itdo:jk5LhzACdLAlnE5co5nqqIP2Itdo
Score

7^/10

discovery persistence
- Executes dropped EXE
- Loads dropped DLL
- Modifies file permissions
  discovery
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

File and Directory Permissions Modification

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2