3dec6c0d6e771b05006f99bd9ba599b820b87c4f186d45c8a4db077d324e8859 | Triage

Sharing

General

Target

NEAS.e6f8662ec51d3cbb4e4a117d8610ca10.exe
Size

145KB
Sample

231107-vdlspsca6x
MD5

e6f8662ec51d3cbb4e4a117d8610ca10
SHA1

b0dd1620124782c6a36baa4057a3185f9e537571
SHA256

3dec6c0d6e771b05006f99bd9ba599b820b87c4f186d45c8a4db077d324e8859
SHA512

ef59631e95a129220481da4c7a3a43422f83924dbc0dbcdfaeadcfdcca6c7f580ba3530b47d7aa9d25bc234847a2df1ca62f16be51ade3b7e932a074b214095e
SSDEEP

3072:+apQLsjnOYOKOpGQ2ly+4yHyisr7O8CMFPv3yJDUKb80vh:+aIsfQ28+4R7T5vrsXh

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.e6f8662ec51d3cbb4e4a117d8610ca10.exe
- Size
  
  145KB
- MD5
  
  e6f8662ec51d3cbb4e4a117d8610ca10
- SHA1
  
  b0dd1620124782c6a36baa4057a3185f9e537571
- SHA256
  
  3dec6c0d6e771b05006f99bd9ba599b820b87c4f186d45c8a4db077d324e8859
- SHA512
  
  ef59631e95a129220481da4c7a3a43422f83924dbc0dbcdfaeadcfdcca6c7f580ba3530b47d7aa9d25bc234847a2df1ca62f16be51ade3b7e932a074b214095e
- SSDEEP
  
  3072:+apQLsjnOYOKOpGQ2ly+4yHyisr7O8CMFPv3yJDUKb80vh:+aIsfQ28+4R7T5vrsXh
Score

8^/10

persistence
- Modifies AppInit DLL entries
  persistence
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2