8c8e0dbd9902047e4c86bf70587ca423bb23ab1b8d8d27a73b3a9a97ff6f08c9 | Triage

Sharing

General

Target

NEAS.1a80de835f7089370d14040f9369d8f0.exe
Size

93KB
Sample

231101-cejevsah79
MD5

1a80de835f7089370d14040f9369d8f0
SHA1

b71dbabeef9d6a57f71a089f953219df2affc738
SHA256

8c8e0dbd9902047e4c86bf70587ca423bb23ab1b8d8d27a73b3a9a97ff6f08c9
SHA512

c0b2cb15b2ffc1aef59f73d2fa1344a79d62a84f8b52f03dd37321d729b6f8d6c19334a34a0606a96040887530ff0dca1592971cea1058a68dd08306dbff737c
SSDEEP

1536:fZ0waerxqE7brmAvC5xDd6qAok3X8PQZYQ6h8CqyYqq5rsaMiwihtIbbpkp:B0HerxqWrmAvC5xD2t8oGV8kjq5rdMi3

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.1a80de835f7089370d14040f9369d8f0.exe
- Size
  
  93KB
- MD5
  
  1a80de835f7089370d14040f9369d8f0
- SHA1
  
  b71dbabeef9d6a57f71a089f953219df2affc738
- SHA256
  
  8c8e0dbd9902047e4c86bf70587ca423bb23ab1b8d8d27a73b3a9a97ff6f08c9
- SHA512
  
  c0b2cb15b2ffc1aef59f73d2fa1344a79d62a84f8b52f03dd37321d729b6f8d6c19334a34a0606a96040887530ff0dca1592971cea1058a68dd08306dbff737c
- SSDEEP
  
  1536:fZ0waerxqE7brmAvC5xDd6qAok3X8PQZYQ6h8CqyYqq5rsaMiwihtIbbpkp:B0HerxqWrmAvC5xD2t8oGV8kjq5rdMi3
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2