922a3c0625b34b7fe9ec522007627be12e88437c73d87776cb6503e70772e608 | Triage

Sharing

General

Target

NEAS.0caa4bc57a3a76aaba0e70de741ce7f0.exe
Size

55KB
Sample

231106-c8henahg63
MD5

0caa4bc57a3a76aaba0e70de741ce7f0
SHA1

0a7f0ec036f79e67b31f77a3c1c3d6448d9d039b
SHA256

922a3c0625b34b7fe9ec522007627be12e88437c73d87776cb6503e70772e608
SHA512

0302461699b84b44769f9436ed74278013e80ce38dcfbf22dcf4eec7d735bc8826aeb035fb59decb5f022ed99b6d8ca951ddd45c8c4db4f5082b5ab9153236d1
SSDEEP

1536:3EV0pa8yNXTBdh4lVGDG5v/KEjUFoI+TiD:0VWMpTBdClVccjUFo7TiD

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.0caa4bc57a3a76aaba0e70de741ce7f0.exe
- Size
  
  55KB
- MD5
  
  0caa4bc57a3a76aaba0e70de741ce7f0
- SHA1
  
  0a7f0ec036f79e67b31f77a3c1c3d6448d9d039b
- SHA256
  
  922a3c0625b34b7fe9ec522007627be12e88437c73d87776cb6503e70772e608
- SHA512
  
  0302461699b84b44769f9436ed74278013e80ce38dcfbf22dcf4eec7d735bc8826aeb035fb59decb5f022ed99b6d8ca951ddd45c8c4db4f5082b5ab9153236d1
- SSDEEP
  
  1536:3EV0pa8yNXTBdh4lVGDG5v/KEjUFoI+TiD:0VWMpTBdClVccjUFo7TiD
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2