2c2ec0008d490d7f639ffc2ecbbc7becfe89f3a74188fccd244c3e54e88122c5 | Triage

Sharing

General

Target

NEAS.dd4c63a23968be4a5074b795d96d7830.exe
Size

357KB
Sample

231106-zvlaqagf72
MD5

dd4c63a23968be4a5074b795d96d7830
SHA1

0a5bbffd230909c96873c0c8a84b3f7646a53d27
SHA256

2c2ec0008d490d7f639ffc2ecbbc7becfe89f3a74188fccd244c3e54e88122c5
SHA512

cf881995e196ab30a8ed91ed75930c92f064e232db3043830f832eb41de225b7ab01fc0592eff8f7f726aecf83aa002623a3bf71c1773fa4339aac08d7372cd4
SSDEEP

6144:2YXViDq6jVcUp1q+1nT+1MzyFIQrf0F+1nT+/:xKXGarzyFIQroaC

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.dd4c63a23968be4a5074b795d96d7830.exe
- Size
  
  357KB
- MD5
  
  dd4c63a23968be4a5074b795d96d7830
- SHA1
  
  0a5bbffd230909c96873c0c8a84b3f7646a53d27
- SHA256
  
  2c2ec0008d490d7f639ffc2ecbbc7becfe89f3a74188fccd244c3e54e88122c5
- SHA512
  
  cf881995e196ab30a8ed91ed75930c92f064e232db3043830f832eb41de225b7ab01fc0592eff8f7f726aecf83aa002623a3bf71c1773fa4339aac08d7372cd4
- SSDEEP
  
  6144:2YXViDq6jVcUp1q+1nT+1MzyFIQrf0F+1nT+/:xKXGarzyFIQroaC
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2