2179c9adaa6f492524eceb86ae329ff611838a1944a65485ced44e34a47c3400 | Triage

Sharing

General

Target

NEAS.f497e981ed383c09b2fdaef1556f1bb0.exe
Size

430KB
Sample

231101-c1x55shc5w
MD5

f497e981ed383c09b2fdaef1556f1bb0
SHA1

dc1a3080593d15ef2c7cb4dbb8340fc1cdc4650d
SHA256

2179c9adaa6f492524eceb86ae329ff611838a1944a65485ced44e34a47c3400
SHA512

e403744869574e34b3763c4932d81a26a948bc3a10d4498969bac668391b7a9f1ed27fa0c4a3fd059439d8c9602ff103d5a891ae0b66766d2fb8633f7baf9452
SSDEEP

6144:h3BDZ7LJNaRs+HLlD0rN2ZwVht740Psz:nDJuHpoxso

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.f497e981ed383c09b2fdaef1556f1bb0.exe
- Size
  
  430KB
- MD5
  
  f497e981ed383c09b2fdaef1556f1bb0
- SHA1
  
  dc1a3080593d15ef2c7cb4dbb8340fc1cdc4650d
- SHA256
  
  2179c9adaa6f492524eceb86ae329ff611838a1944a65485ced44e34a47c3400
- SHA512
  
  e403744869574e34b3763c4932d81a26a948bc3a10d4498969bac668391b7a9f1ed27fa0c4a3fd059439d8c9602ff103d5a891ae0b66766d2fb8633f7baf9452
- SSDEEP
  
  6144:h3BDZ7LJNaRs+HLlD0rN2ZwVht740Psz:nDJuHpoxso
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2