05b333f6190fa1581c6f6fa7050433a6fb47feb2a0e9e9deda8916a310292f4f | Triage

Sharing

General

Target

NEAS.e9bc4f94e00610ea9e657eb61f4da3b0.exe
Size

470KB
Sample

231103-pjd26aac3v
MD5

e9bc4f94e00610ea9e657eb61f4da3b0
SHA1

a4989ed6ace1255c4e154aa14852168960e8237b
SHA256

05b333f6190fa1581c6f6fa7050433a6fb47feb2a0e9e9deda8916a310292f4f
SHA512

810afa821a4001efbfbe7fc8e4bf3562f5534c9ef4fcd7ea782ccd63d1c477b2507b0723800195008c12d53eec6a62c4ece63b55f0a45c397698af738356e001
SSDEEP

12288:ML/Qc8QVj94nLiFzN3b7CUq1u2ztB1XQKTQInqyS6Rm6TIJ3l7DurTG9c8QVj948:U4

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.e9bc4f94e00610ea9e657eb61f4da3b0.exe
- Size
  
  470KB
- MD5
  
  e9bc4f94e00610ea9e657eb61f4da3b0
- SHA1
  
  a4989ed6ace1255c4e154aa14852168960e8237b
- SHA256
  
  05b333f6190fa1581c6f6fa7050433a6fb47feb2a0e9e9deda8916a310292f4f
- SHA512
  
  810afa821a4001efbfbe7fc8e4bf3562f5534c9ef4fcd7ea782ccd63d1c477b2507b0723800195008c12d53eec6a62c4ece63b55f0a45c397698af738356e001
- SSDEEP
  
  12288:ML/Qc8QVj94nLiFzN3b7CUq1u2ztB1XQKTQInqyS6Rm6TIJ3l7DurTG9c8QVj948:U4
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2