58f84d1b9ee39f628c3852b136c62e9a64c0b4f56a40b9c84ce61266687f0594 | Triage

Sharing

General

Target

NEAS.f3c94d5d5f1ebda5b15713e7e56960e8.exe
Size

386KB
Sample

231101-kdswxadg6w
MD5

f3c94d5d5f1ebda5b15713e7e56960e8
SHA1

f622e8dd591d84301d8039691433dcb5479e0d0a
SHA256

58f84d1b9ee39f628c3852b136c62e9a64c0b4f56a40b9c84ce61266687f0594
SHA512

5c592759de02bcca141fb119eb8a68dd4f5e84ac7c3cffd1112b9dc26c2a4090ffb8b8a70280056902a33dbb534d6d0fecf8a047c3fd96cced1d5c9a311b9ec6
SSDEEP

12288:qwCcJ0X4i0wQZ7287xmPFRkfJg9qwQZ7287xmP:qvk0X0ZZ/aFKm9qZZ/a

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.f3c94d5d5f1ebda5b15713e7e56960e8.exe
- Size
  
  386KB
- MD5
  
  f3c94d5d5f1ebda5b15713e7e56960e8
- SHA1
  
  f622e8dd591d84301d8039691433dcb5479e0d0a
- SHA256
  
  58f84d1b9ee39f628c3852b136c62e9a64c0b4f56a40b9c84ce61266687f0594
- SHA512
  
  5c592759de02bcca141fb119eb8a68dd4f5e84ac7c3cffd1112b9dc26c2a4090ffb8b8a70280056902a33dbb534d6d0fecf8a047c3fd96cced1d5c9a311b9ec6
- SSDEEP
  
  12288:qwCcJ0X4i0wQZ7287xmPFRkfJg9qwQZ7287xmP:qvk0X0ZZ/aFKm9qZZ/a
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2