d424fbb85bca5a7a405de5c9c798e7f744f814c33b0f91bf86be6b301feb83b7 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

NEAS.eaa2a143d2fd2b834681c2beb3329c60.exe
Size

80KB
Sample

231102-vdb89sdg94
MD5

eaa2a143d2fd2b834681c2beb3329c60
SHA1

385cb0130f65f3e2028162114821cf4ed565497a
SHA256

d424fbb85bca5a7a405de5c9c798e7f744f814c33b0f91bf86be6b301feb83b7
SHA512

0ff2fbff17c44e2e367bb11a27dec3dd34d829607c5f1624a07b21028b6cec1eee46ba41cf87d72d4023a6efcc5dbb4769435bf7d0102ad12b7184f0a4f39170
SSDEEP

1536:om2fGWazdE0AGdBpf1hn0L4+nTzDfWqdMVrlEFtyb7IYOOqw4Tv:32uWazdETcBpfgLBnTzTWqAhELy1MTTv

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.eaa2a143d2fd2b834681c2beb3329c60.exe
- Size
  
  80KB
- MD5
  
  eaa2a143d2fd2b834681c2beb3329c60
- SHA1
  
  385cb0130f65f3e2028162114821cf4ed565497a
- SHA256
  
  d424fbb85bca5a7a405de5c9c798e7f744f814c33b0f91bf86be6b301feb83b7
- SHA512
  
  0ff2fbff17c44e2e367bb11a27dec3dd34d829607c5f1624a07b21028b6cec1eee46ba41cf87d72d4023a6efcc5dbb4769435bf7d0102ad12b7184f0a4f39170
- SSDEEP
  
  1536:om2fGWazdE0AGdBpf1hn0L4+nTzDfWqdMVrlEFtyb7IYOOqw4Tv:32uWazdETcBpfgLBnTzTWqAhELy1MTTv
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2