22dc2fa6e5c2880cd819330095f0266a16fb0bb3420828cbb42dbc56b1363485 | Triage

Sharing

General

Target

NEAS.f1dcf626b149ce9490d05ad58addf930.exe
Size

99KB
Sample

231101-rqqqmshd6x
MD5

f1dcf626b149ce9490d05ad58addf930
SHA1

5a74fb475e608b5598c6bd6ff641a6d766aeb0e8
SHA256

22dc2fa6e5c2880cd819330095f0266a16fb0bb3420828cbb42dbc56b1363485
SHA512

80ad18852e8dd34e4298cb02d9652836e2a5f781eaddcca90c2fbd909aa53c2c3f0f57ed6a4f706fd0ac3d0239ad97ac41437b214c6dafdf2b1c64b0f375f32e
SSDEEP

3072:w/O4pPf4Mp0rNQhZawf1Fey6pwoTRBmDRGGurhUI:+rC5QhZZoQm7UI

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.f1dcf626b149ce9490d05ad58addf930.exe
- Size
  
  99KB
- MD5
  
  f1dcf626b149ce9490d05ad58addf930
- SHA1
  
  5a74fb475e608b5598c6bd6ff641a6d766aeb0e8
- SHA256
  
  22dc2fa6e5c2880cd819330095f0266a16fb0bb3420828cbb42dbc56b1363485
- SHA512
  
  80ad18852e8dd34e4298cb02d9652836e2a5f781eaddcca90c2fbd909aa53c2c3f0f57ed6a4f706fd0ac3d0239ad97ac41437b214c6dafdf2b1c64b0f375f32e
- SSDEEP
  
  3072:w/O4pPf4Mp0rNQhZawf1Fey6pwoTRBmDRGGurhUI:+rC5QhZZoQm7UI
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2