c1fb4eb9bd81d64761da3ff2ea56b32f6440a2ad84e857ed70366b8675952b0b | Triage

Sharing

Copy URL Twitter E-mail

General

Target

NEAS.979ff4616e520800c1d709fc07e1c0b1.exe
Size

325KB
Sample

231104-sscr8sbh9t
MD5

979ff4616e520800c1d709fc07e1c0b1
SHA1

da41c9e0fda53a9e34259df4ef11927d062bbe50
SHA256

c1fb4eb9bd81d64761da3ff2ea56b32f6440a2ad84e857ed70366b8675952b0b
SHA512

bec0a5c2adbccf203caad89742285a788701aabe9bba80476d56e05fc288228ade330844af1ea775e69c4a39cc24c1c635cd0ecbf8d4fbb9de2a8cda67960dd6
SSDEEP

6144:vGgqhUuRs+Hsohxd2Quohdbd0zscwIGUKfvUJ43ewmxteZekR+1b/KVC0CLzg:eNDHxdzZdxGwsYIL0

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.979ff4616e520800c1d709fc07e1c0b1.exe
- Size
  
  325KB
- MD5
  
  979ff4616e520800c1d709fc07e1c0b1
- SHA1
  
  da41c9e0fda53a9e34259df4ef11927d062bbe50
- SHA256
  
  c1fb4eb9bd81d64761da3ff2ea56b32f6440a2ad84e857ed70366b8675952b0b
- SHA512
  
  bec0a5c2adbccf203caad89742285a788701aabe9bba80476d56e05fc288228ade330844af1ea775e69c4a39cc24c1c635cd0ecbf8d4fbb9de2a8cda67960dd6
- SSDEEP
  
  6144:vGgqhUuRs+Hsohxd2Quohdbd0zscwIGUKfvUJ43ewmxteZekR+1b/KVC0CLzg:eNDHxdzZdxGwsYIL0
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2