2c496f638edf35474601dd0c40f4f9bad5548200ad402f99cf05539f733c1ff0 | Triage

Sharing

General

Target

NEAS.15acbc607adfb96a9486dbd60d599840.exe
Size

387KB
Sample

231101-q7frbsbg97
MD5

15acbc607adfb96a9486dbd60d599840
SHA1

54bef140790ade093737975c99d70b7f1d763a29
SHA256

2c496f638edf35474601dd0c40f4f9bad5548200ad402f99cf05539f733c1ff0
SHA512

945b2b75859d34958a74e183e01726cb595af3a38686a2d0d081d71b4ca90fe7585d2a768e38ff236acb85817aec63cb29ad979359fadea142d62c62011af3b2
SSDEEP

6144:v7eAGb85hBOEgHixuqjwszeXmpzKPJG9EeIMT:v7ePyqHiPjoPJG9EeIW

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.15acbc607adfb96a9486dbd60d599840.exe
- Size
  
  387KB
- MD5
  
  15acbc607adfb96a9486dbd60d599840
- SHA1
  
  54bef140790ade093737975c99d70b7f1d763a29
- SHA256
  
  2c496f638edf35474601dd0c40f4f9bad5548200ad402f99cf05539f733c1ff0
- SHA512
  
  945b2b75859d34958a74e183e01726cb595af3a38686a2d0d081d71b4ca90fe7585d2a768e38ff236acb85817aec63cb29ad979359fadea142d62c62011af3b2
- SSDEEP
  
  6144:v7eAGb85hBOEgHixuqjwszeXmpzKPJG9EeIMT:v7ePyqHiPjoPJG9EeIW
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2