ffedf7bc4f9e692dc13ac81b00ec2694aae19c4cb654d18cbefbaf4fc228aaa7 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

NEAS.1c3a2c4ba0d8332defc5ccba5e996470.exe
Size

75KB
Sample

231107-dtjjvaaf3v
MD5

1c3a2c4ba0d8332defc5ccba5e996470
SHA1

d5137d5f103441f045ea372f76606ffe6bd25f77
SHA256

ffedf7bc4f9e692dc13ac81b00ec2694aae19c4cb654d18cbefbaf4fc228aaa7
SHA512

8c020818afa2aafb24464c4e19be898eac541c40a519d36e146f3bbcca6de8d823ddcb6fcd00edcb057e739945e8f419a7bd9959e642d19b4db8c492e48782c3
SSDEEP

1536:5WxMNPP5oGLg5/l/1YzOthkZR6c8mBNZFx9ht5lRdo0gMqEw3Vob2LBz6+lWCWQv:5Qg5o3lNYEhkZamBNZFx9ht5lRdo0gMC

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.1c3a2c4ba0d8332defc5ccba5e996470.exe
- Size
  
  75KB
- MD5
  
  1c3a2c4ba0d8332defc5ccba5e996470
- SHA1
  
  d5137d5f103441f045ea372f76606ffe6bd25f77
- SHA256
  
  ffedf7bc4f9e692dc13ac81b00ec2694aae19c4cb654d18cbefbaf4fc228aaa7
- SHA512
  
  8c020818afa2aafb24464c4e19be898eac541c40a519d36e146f3bbcca6de8d823ddcb6fcd00edcb057e739945e8f419a7bd9959e642d19b4db8c492e48782c3
- SSDEEP
  
  1536:5WxMNPP5oGLg5/l/1YzOthkZR6c8mBNZFx9ht5lRdo0gMqEw3Vob2LBz6+lWCWQv:5Qg5o3lNYEhkZamBNZFx9ht5lRdo0gMC
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2