67ebf7a337f171ebcdbeec84e14e0ac4f9ed07d748bc2961ea03efbc3b0580cd | Triage

Sharing

General

Target

NEAS.e23af4df2c80b5d23a5ed68d679ec990.exe
Size

80KB
Sample

231107-zgkr2ahe44
MD5

e23af4df2c80b5d23a5ed68d679ec990
SHA1

c4ab21ecd4b0ae0860a2994dcd7aed818f071a36
SHA256

67ebf7a337f171ebcdbeec84e14e0ac4f9ed07d748bc2961ea03efbc3b0580cd
SHA512

b54bc21d95e5d5c9fbbe334443119928fe917ea2d1a240e8a2da0d4bf44eac4a23a81d82a8cb7b2b43564fcaa564dbac613f490f2669842f2e0ba2b906e23210
SSDEEP

1536:tB4rUrzg8/KU8zC9Yap2GVAozDfWqdMVrlEFtyb7IYOOqw4Tv:tBbj/KU8zCS/GAozTWqAhELy1MTTv

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.e23af4df2c80b5d23a5ed68d679ec990.exe
- Size
  
  80KB
- MD5
  
  e23af4df2c80b5d23a5ed68d679ec990
- SHA1
  
  c4ab21ecd4b0ae0860a2994dcd7aed818f071a36
- SHA256
  
  67ebf7a337f171ebcdbeec84e14e0ac4f9ed07d748bc2961ea03efbc3b0580cd
- SHA512
  
  b54bc21d95e5d5c9fbbe334443119928fe917ea2d1a240e8a2da0d4bf44eac4a23a81d82a8cb7b2b43564fcaa564dbac613f490f2669842f2e0ba2b906e23210
- SSDEEP
  
  1536:tB4rUrzg8/KU8zC9Yap2GVAozDfWqdMVrlEFtyb7IYOOqw4Tv:tBbj/KU8zCS/GAozTWqAhELy1MTTv
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2