c2eb068cf32ee28175e566e57e269a32883455dd286b91d1bce0044b3fa1fb38 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

NEAS.e9df2f42a4375eb6b9ce0a81644e1180.exe
Size

72KB
Sample

231102-vda17sbg6t
MD5

e9df2f42a4375eb6b9ce0a81644e1180
SHA1

acef03971aec43feca647725e127b270124af025
SHA256

c2eb068cf32ee28175e566e57e269a32883455dd286b91d1bce0044b3fa1fb38
SHA512

72f3948572dc8baf88445901eeb70ace2e89631f89ec21e8a08ab41b110e8cf87ef2a901ef61733dd0a410b74acc641d15b3dd61d46d595282415b5cc0c821bc
SSDEEP

1536:U18AqeKtWuFXG+2+Fmb1FmKIwEPUZiyOGjOXYB:A8AHKtWuFXG+Fu1oKMAinGqXY

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.e9df2f42a4375eb6b9ce0a81644e1180.exe
- Size
  
  72KB
- MD5
  
  e9df2f42a4375eb6b9ce0a81644e1180
- SHA1
  
  acef03971aec43feca647725e127b270124af025
- SHA256
  
  c2eb068cf32ee28175e566e57e269a32883455dd286b91d1bce0044b3fa1fb38
- SHA512
  
  72f3948572dc8baf88445901eeb70ace2e89631f89ec21e8a08ab41b110e8cf87ef2a901ef61733dd0a410b74acc641d15b3dd61d46d595282415b5cc0c821bc
- SSDEEP
  
  1536:U18AqeKtWuFXG+2+Fmb1FmKIwEPUZiyOGjOXYB:A8AHKtWuFXG+Fu1oKMAinGqXY
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2