3e2863908e447ebc41e3de13f1a5d312456013e5b5f832b588454318a1baf054 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

NEAS.260fcf8d67ce1c83a8bf07d27a3def50.exe
Size

602KB
Sample

231022-vs2gpsea28
MD5

260fcf8d67ce1c83a8bf07d27a3def50
SHA1

1d6b43792d1c96fe53a4b3620caed5953521832a
SHA256

3e2863908e447ebc41e3de13f1a5d312456013e5b5f832b588454318a1baf054
SHA512

64bb6d2a718d24bc9fccf49fa9b88ebdef335d1830bcba45040dc7ac6f49e3be520604794b41d03885296a2dc3a8ff2757ee5ff949672be613d01b1f6ee38f4b
SSDEEP

12288:VU4XluM1zjZWcnb16Ffoovyf51EkCc1IFpZKdLoejidcmb43p1ivSnb:VU4X8MNeF/yTCcWpMLLjuPbNOb

Score

6^/10

evasion trojan

Malware Config

Targets

- Target
  
  NEAS.260fcf8d67ce1c83a8bf07d27a3def50.exe
- Size
  
  602KB
- MD5
  
  260fcf8d67ce1c83a8bf07d27a3def50
- SHA1
  
  1d6b43792d1c96fe53a4b3620caed5953521832a
- SHA256
  
  3e2863908e447ebc41e3de13f1a5d312456013e5b5f832b588454318a1baf054
- SHA512
  
  64bb6d2a718d24bc9fccf49fa9b88ebdef335d1830bcba45040dc7ac6f49e3be520604794b41d03885296a2dc3a8ff2757ee5ff949672be613d01b1f6ee38f4b
- SSDEEP
  
  12288:VU4XluM1zjZWcnb16Ffoovyf51EkCc1IFpZKdLoejidcmb43p1ivSnb:VU4X8MNeF/yTCcWpMLLjuPbNOb
Score

6^/10

evasion trojan
- Checks whether UAC is enabled
  evasion trojan
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2