3d3243b5e58ebfab91e63ccfe21dc3555217edb125efc0b75a728503e10e4d5f | Triage

Sharing

General

Target

NEAS.4da2cb9a265d36c557f2bdc9d792b2c0.exe
Size

250KB
Sample

231105-x3pa8scf95
MD5

4da2cb9a265d36c557f2bdc9d792b2c0
SHA1

dcfeb196ae1567ab6d4ad27df56def02475709e3
SHA256

3d3243b5e58ebfab91e63ccfe21dc3555217edb125efc0b75a728503e10e4d5f
SHA512

cea36d08c7b1f52a41c255f27da4c46735b505b247fb5989efcee1aee58b0693c2372943344acc03339c2d04e876ee7ed77b9741a493006e639e9bb0ef17caf3
SSDEEP

6144:uvBdUdKVUvCvfmZ7KRRRGBCvfmZ7KFpNlJTBCvfmZ7d:yB6dKj

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.4da2cb9a265d36c557f2bdc9d792b2c0.exe
- Size
  
  250KB
- MD5
  
  4da2cb9a265d36c557f2bdc9d792b2c0
- SHA1
  
  dcfeb196ae1567ab6d4ad27df56def02475709e3
- SHA256
  
  3d3243b5e58ebfab91e63ccfe21dc3555217edb125efc0b75a728503e10e4d5f
- SHA512
  
  cea36d08c7b1f52a41c255f27da4c46735b505b247fb5989efcee1aee58b0693c2372943344acc03339c2d04e876ee7ed77b9741a493006e639e9bb0ef17caf3
- SSDEEP
  
  6144:uvBdUdKVUvCvfmZ7KRRRGBCvfmZ7KFpNlJTBCvfmZ7d:yB6dKj
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2