0c2033cbd982bbf8876a0b9f50ed3715ec9c1d96d274d7712c3aabfb525b0fa2 | Triage

Sharing

General

Target

NEAS.e51210a2faae73bd50e29edbdf126a00.exe
Size

430KB
Sample

231103-nkw4pahc5v
MD5

e51210a2faae73bd50e29edbdf126a00
SHA1

c41854a78793a89814f7e6e8247a757693ff39ad
SHA256

0c2033cbd982bbf8876a0b9f50ed3715ec9c1d96d274d7712c3aabfb525b0fa2
SHA512

322c16d43e4601eec0eac06223511cc1d92c3e89d8a802c31397bad655b6776fce732820fd3e42d695477ec1dbb6b5b513f3c956878c05918c6a324daa0b3e78
SSDEEP

3072:Xa+iBZ78uDDzxtZVAURfE+HAokWmvEie0RFz3yE2ZwVh16Mz7GFD0AlWsnzj:niBZtvZRs+HLlD0rN2ZwVht740Psz

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.e51210a2faae73bd50e29edbdf126a00.exe
- Size
  
  430KB
- MD5
  
  e51210a2faae73bd50e29edbdf126a00
- SHA1
  
  c41854a78793a89814f7e6e8247a757693ff39ad
- SHA256
  
  0c2033cbd982bbf8876a0b9f50ed3715ec9c1d96d274d7712c3aabfb525b0fa2
- SHA512
  
  322c16d43e4601eec0eac06223511cc1d92c3e89d8a802c31397bad655b6776fce732820fd3e42d695477ec1dbb6b5b513f3c956878c05918c6a324daa0b3e78
- SSDEEP
  
  3072:Xa+iBZ78uDDzxtZVAURfE+HAokWmvEie0RFz3yE2ZwVh16Mz7GFD0AlWsnzj:niBZtvZRs+HLlD0rN2ZwVht740Psz
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2