cc35c69f09dd53064e095e84694df49355f9e9200a98b397171099eb94335543 | Triage

Sharing

General

Target

NEAS.2fc3864502040a6077025e3cb040bf30.exe
Size

121KB
Sample

231104-p8ttxaaa7x
MD5

2fc3864502040a6077025e3cb040bf30
SHA1

686bcfa236c308cde2e4c2a3ec53ce4d633445de
SHA256

cc35c69f09dd53064e095e84694df49355f9e9200a98b397171099eb94335543
SHA512

d87d59db212b6531967b4b8a04c876c132996f5e2987c06b89ab7a1a3cb25921e517e661f02c8268e6ddbc28dc7afc0946406fe3b23834a0923f667ff0ee2c4b
SSDEEP

3072:FlnnJBSX1nV1b1N1Il1k1YFI1x1J1MuEqx517Q/1T1Jzct01Nbnl1RRhCHODpOJO:zw6P

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.2fc3864502040a6077025e3cb040bf30.exe
- Size
  
  121KB
- MD5
  
  2fc3864502040a6077025e3cb040bf30
- SHA1
  
  686bcfa236c308cde2e4c2a3ec53ce4d633445de
- SHA256
  
  cc35c69f09dd53064e095e84694df49355f9e9200a98b397171099eb94335543
- SHA512
  
  d87d59db212b6531967b4b8a04c876c132996f5e2987c06b89ab7a1a3cb25921e517e661f02c8268e6ddbc28dc7afc0946406fe3b23834a0923f667ff0ee2c4b
- SSDEEP
  
  3072:FlnnJBSX1nV1b1N1Il1k1YFI1x1J1MuEqx517Q/1T1Jzct01Nbnl1RRhCHODpOJO:zw6P
Score

7^/10

persistence
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2