43155f335445aa1d3b8e1f2a3c4471cb672cb9d004f3a9b61cf0b2bf17cc2c55 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

NEAS.ff2c597a8c327c626f57512e8f394220.exe
Size

359KB
Sample

231028-y4c52add3x
MD5

ff2c597a8c327c626f57512e8f394220
SHA1

ee7e357b3d6b6224c858555365d17c3298a8d6b5
SHA256

43155f335445aa1d3b8e1f2a3c4471cb672cb9d004f3a9b61cf0b2bf17cc2c55
SHA512

1d867f87b03a7b9751752b85073945af31def5cd2641d9024dd73918cfb28ad030b54a3d0fcfc33cffb243629dae18f22f250fc1af69743f39a6f6ec082762e8
SSDEEP

3072:7i8oij3ypUQCmNYrq9xVPJKORl0kQI8Va3CkfUVuyelbvP5lkzmQ1o0Otw44Kmf5:u8oijPryjZlprba4Yb31/doG

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.ff2c597a8c327c626f57512e8f394220.exe
- Size
  
  359KB
- MD5
  
  ff2c597a8c327c626f57512e8f394220
- SHA1
  
  ee7e357b3d6b6224c858555365d17c3298a8d6b5
- SHA256
  
  43155f335445aa1d3b8e1f2a3c4471cb672cb9d004f3a9b61cf0b2bf17cc2c55
- SHA512
  
  1d867f87b03a7b9751752b85073945af31def5cd2641d9024dd73918cfb28ad030b54a3d0fcfc33cffb243629dae18f22f250fc1af69743f39a6f6ec082762e8
- SSDEEP
  
  3072:7i8oij3ypUQCmNYrq9xVPJKORl0kQI8Va3CkfUVuyelbvP5lkzmQ1o0Otw44Kmf5:u8oijPryjZlprba4Yb31/doG
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2