b381ee0d89e5526bc30bbde81771e6da4adf54371384389edb5c8d20a41e7b3a | Triage

Sharing

General

Target

NEAS.c27167287e46666c25f45a93f6fa7410.exe
Size

5.5MB
Sample

231102-vbnjhsaf9z
MD5

c27167287e46666c25f45a93f6fa7410
SHA1

568821ffeab411599ade99c29d325d5589607e82
SHA256

b381ee0d89e5526bc30bbde81771e6da4adf54371384389edb5c8d20a41e7b3a
SHA512

b133dea8b0a30fac6b527a6a5b3ce8aa16562a82f0cbf6e498a787a2ffffaebe4e9fb93a19a8db504c7d852977afe566f9a956bd947dd94d8f7d5fab1a88f0d3
SSDEEP

24576:v21D022G221D022Fp221D022G221D0229221D022G221D022sMy221D022G221Df:8D/D6D/DQD/DFBD/DQD/D6D/DQD/D

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.c27167287e46666c25f45a93f6fa7410.exe
- Size
  
  5.5MB
- MD5
  
  c27167287e46666c25f45a93f6fa7410
- SHA1
  
  568821ffeab411599ade99c29d325d5589607e82
- SHA256
  
  b381ee0d89e5526bc30bbde81771e6da4adf54371384389edb5c8d20a41e7b3a
- SHA512
  
  b133dea8b0a30fac6b527a6a5b3ce8aa16562a82f0cbf6e498a787a2ffffaebe4e9fb93a19a8db504c7d852977afe566f9a956bd947dd94d8f7d5fab1a88f0d3
- SSDEEP
  
  24576:v21D022G221D022Fp221D022G221D0229221D022G221D022sMy221D022G221Df:8D/D6D/DQD/DFBD/DQD/D6D/DQD/D
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2