0187eac9dc32828197ff5eed2bbdc8f2529ca0c522aee7fbacd5ae27ebdcba39 | Triage

Sharing

General

Target

NEAS.bd0db1836ae022bb52ea2c94f0a069ae.exe
Size

64KB
Sample

231101-vhzkcsce42
MD5

bd0db1836ae022bb52ea2c94f0a069ae
SHA1

e2cfdd24ceaeaa4b17c0ea411eb6dbbf34315b57
SHA256

0187eac9dc32828197ff5eed2bbdc8f2529ca0c522aee7fbacd5ae27ebdcba39
SHA512

77fdb12251c737800ed99a83af97ab65abd84c933c4e364faa414a5df4dc53c84b20481b991309996630cf307ebaa97b9c653eda0295ef4a1e2149c3c4025f7b
SSDEEP

1536:ZObaTjdg5aikPK3Ot1EH2aWyCLrPFW2iwTbW:ZO4jdgYikPK2UX4FW2VTbW

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.bd0db1836ae022bb52ea2c94f0a069ae.exe
- Size
  
  64KB
- MD5
  
  bd0db1836ae022bb52ea2c94f0a069ae
- SHA1
  
  e2cfdd24ceaeaa4b17c0ea411eb6dbbf34315b57
- SHA256
  
  0187eac9dc32828197ff5eed2bbdc8f2529ca0c522aee7fbacd5ae27ebdcba39
- SHA512
  
  77fdb12251c737800ed99a83af97ab65abd84c933c4e364faa414a5df4dc53c84b20481b991309996630cf307ebaa97b9c653eda0295ef4a1e2149c3c4025f7b
- SSDEEP
  
  1536:ZObaTjdg5aikPK3Ot1EH2aWyCLrPFW2iwTbW:ZO4jdgYikPK2UX4FW2VTbW
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2