c3100e4bcb4627aaf469f368e10d41e9f6025cce2556652ad36103f1863d90d2 | Triage

Sharing

General

Target

NEAS.d517fc2de7f8ca00f46a51f718daafc0.exe
Size

1.8MB
Sample

231101-rnz7ashh26
MD5

d517fc2de7f8ca00f46a51f718daafc0
SHA1

0f4268f7973fce2ea2b70b64d8b03c24ac73aa4f
SHA256

c3100e4bcb4627aaf469f368e10d41e9f6025cce2556652ad36103f1863d90d2
SHA512

2729dead0a1caf1183643ca236da3faec09a6f3de4f5b50f823ae337df462c1dae192723780dd2d636867e1c406f1d2bc47144cf81d4673b6d04ac59ea75ea1a
SSDEEP

49152:mA+sKWcuOosKW6CsKWcuOosKW3JsKWcuOosKW0sKWcuOosKW:T+Ic8I6CIc8IZIc8I0Ic8I

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.d517fc2de7f8ca00f46a51f718daafc0.exe
- Size
  
  1.8MB
- MD5
  
  d517fc2de7f8ca00f46a51f718daafc0
- SHA1
  
  0f4268f7973fce2ea2b70b64d8b03c24ac73aa4f
- SHA256
  
  c3100e4bcb4627aaf469f368e10d41e9f6025cce2556652ad36103f1863d90d2
- SHA512
  
  2729dead0a1caf1183643ca236da3faec09a6f3de4f5b50f823ae337df462c1dae192723780dd2d636867e1c406f1d2bc47144cf81d4673b6d04ac59ea75ea1a
- SSDEEP
  
  49152:mA+sKWcuOosKW6CsKWcuOosKW3JsKWcuOosKW0sKWcuOosKW:T+Ic8I6CIc8IZIc8I0Ic8I
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2