a6285ddbc2d468f6aa2df6aa4a2b5eba27b6b7267e0dbfa8898b0f459529e1b3 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

NEAS.e2c8cd8d7e9c78000224f3b812c8d590.exe
Size

80KB
Sample

231106-xm59tadc41
MD5

e2c8cd8d7e9c78000224f3b812c8d590
SHA1

09d3d3f061fa16306771f42a7b5687770459b909
SHA256

a6285ddbc2d468f6aa2df6aa4a2b5eba27b6b7267e0dbfa8898b0f459529e1b3
SHA512

65852cd5889a358cf0906d7a24265ff1a86a23fbba71c1922d47ef4a1e89451b36b4c270f775ac60682cdf3a09f408189478a873e013ccd496c7a381d9319418
SSDEEP

1536:kMlmO7H9ZtUJd/siiKzDfWqdMVrlEFtyb7IYOOqw4Tv:kMLZZSr/snKzTWqAhELy1MTTv

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.e2c8cd8d7e9c78000224f3b812c8d590.exe
- Size
  
  80KB
- MD5
  
  e2c8cd8d7e9c78000224f3b812c8d590
- SHA1
  
  09d3d3f061fa16306771f42a7b5687770459b909
- SHA256
  
  a6285ddbc2d468f6aa2df6aa4a2b5eba27b6b7267e0dbfa8898b0f459529e1b3
- SHA512
  
  65852cd5889a358cf0906d7a24265ff1a86a23fbba71c1922d47ef4a1e89451b36b4c270f775ac60682cdf3a09f408189478a873e013ccd496c7a381d9319418
- SSDEEP
  
  1536:kMlmO7H9ZtUJd/siiKzDfWqdMVrlEFtyb7IYOOqw4Tv:kMLZZSr/snKzTWqAhELy1MTTv
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2