fe017b4895d93d034c5e639fe35e87f8582a26facdc8e101a482b09532792d65 | Triage

Sharing

General

Target

NEAS.1b5c2d5608c6df4dae7bb180bd5d9b00.exe
Size

327KB
Sample

231107-rldkhsgg5s
MD5

1b5c2d5608c6df4dae7bb180bd5d9b00
SHA1

a84fbc927d58f7a9ba892aa883c0ce88b53e57b1
SHA256

fe017b4895d93d034c5e639fe35e87f8582a26facdc8e101a482b09532792d65
SHA512

99dc1fcd3459cc8ad62f7946cacd24745f8666e58c4727cdd9f7db955855af32d4fa2161a604790c6ed8ff9822b1d08ccb0e3e462bd1258ef7726d4001ec5cb5
SSDEEP

3072:HcTeyS2H3440h5vOOX5a1/f7Hp9hCEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEESLV:H434425vOOX587Hp9j0+r+Mds9BY

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.1b5c2d5608c6df4dae7bb180bd5d9b00.exe
- Size
  
  327KB
- MD5
  
  1b5c2d5608c6df4dae7bb180bd5d9b00
- SHA1
  
  a84fbc927d58f7a9ba892aa883c0ce88b53e57b1
- SHA256
  
  fe017b4895d93d034c5e639fe35e87f8582a26facdc8e101a482b09532792d65
- SHA512
  
  99dc1fcd3459cc8ad62f7946cacd24745f8666e58c4727cdd9f7db955855af32d4fa2161a604790c6ed8ff9822b1d08ccb0e3e462bd1258ef7726d4001ec5cb5
- SSDEEP
  
  3072:HcTeyS2H3440h5vOOX5a1/f7Hp9hCEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEESLV:H434425vOOX587Hp9j0+r+Mds9BY
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2