085e357262f88541848cac4bcc9a70c4500f2b848a9db16203ed696cb1c1362a | Triage

Sharing

Copy URL Twitter E-mail

General

Target

NEAS.f2bc61fd2133fd87817fbda442093e70.exe
Size

144KB
Sample

231101-rqr9gahd8x
MD5

f2bc61fd2133fd87817fbda442093e70
SHA1

250005efe97f06e3285d71f5652ccd1d9205108d
SHA256

085e357262f88541848cac4bcc9a70c4500f2b848a9db16203ed696cb1c1362a
SHA512

d628c2118cfb024f426ca10e1b090a6e68aa045923c67f5321f4ef51605744f85a231333c1eebe2bec8ad0d2d262841bfe45859e0ece2eaad1ba233f1d7db5c9
SSDEEP

3072:DTJGD1wzt6B+0bWZOwSHrAzdH13+EE+RaZ6r+GDZnBcVU:JGxwx+bdwSHrAzd5IF6rfBBcVU

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.f2bc61fd2133fd87817fbda442093e70.exe
- Size
  
  144KB
- MD5
  
  f2bc61fd2133fd87817fbda442093e70
- SHA1
  
  250005efe97f06e3285d71f5652ccd1d9205108d
- SHA256
  
  085e357262f88541848cac4bcc9a70c4500f2b848a9db16203ed696cb1c1362a
- SHA512
  
  d628c2118cfb024f426ca10e1b090a6e68aa045923c67f5321f4ef51605744f85a231333c1eebe2bec8ad0d2d262841bfe45859e0ece2eaad1ba233f1d7db5c9
- SSDEEP
  
  3072:DTJGD1wzt6B+0bWZOwSHrAzdH13+EE+RaZ6r+GDZnBcVU:JGxwx+bdwSHrAzd5IF6rfBBcVU
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2