d271b30339bfcb62d37095f2a4e6c9fe2b45d391e700859d13c3108a87f25e2f | Triage

Sharing

General

Target

NEAS.d23fc9011f3541a300838da6e08ec68d.exe
Size

98KB
Sample

231107-rck81aga4s
MD5

d23fc9011f3541a300838da6e08ec68d
SHA1

79f5027deeeb4f95b6f18145e96fc29fd337d689
SHA256

d271b30339bfcb62d37095f2a4e6c9fe2b45d391e700859d13c3108a87f25e2f
SHA512

f1a0dbb574baea378f975353b0e599ef1bf1617705b3d06398e298d380bf4b88f17f12fb32f98954f90eeef5c49ccfe8556a829c5687b52a60287a642531631e
SSDEEP

3072:BjCtnLcw8oJa1UFEHeFKPD375lHzpa1P:BScw82EHeYr75lHzpaF

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.d23fc9011f3541a300838da6e08ec68d.exe
- Size
  
  98KB
- MD5
  
  d23fc9011f3541a300838da6e08ec68d
- SHA1
  
  79f5027deeeb4f95b6f18145e96fc29fd337d689
- SHA256
  
  d271b30339bfcb62d37095f2a4e6c9fe2b45d391e700859d13c3108a87f25e2f
- SHA512
  
  f1a0dbb574baea378f975353b0e599ef1bf1617705b3d06398e298d380bf4b88f17f12fb32f98954f90eeef5c49ccfe8556a829c5687b52a60287a642531631e
- SSDEEP
  
  3072:BjCtnLcw8oJa1UFEHeFKPD375lHzpa1P:BScw82EHeYr75lHzpaF
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2