2b224896aa3e036da4380bc51a918c396a740b1a5c55dafb5abf2ec56e76f64b | Triage

Sharing

General

Target

NEAS.ddedc8e67af195385c6977a43a045a90.exe
Size

364KB
Sample

231111-f2am1sbd3t
MD5

ddedc8e67af195385c6977a43a045a90
SHA1

632058daddb30c5cfe6949eeb85297c799677971
SHA256

2b224896aa3e036da4380bc51a918c396a740b1a5c55dafb5abf2ec56e76f64b
SHA512

3a4e40a53c74f0b30294a4dcca77243eb5a93e05438697544dc38fa2f0a8d318ba82a0a2545bcd15b5fde559478b7cbe7dad96520ec7507ca87f44494c510575
SSDEEP

6144:zc4/2iPcDUEHsFj5tT3sFxHnkO/ACmLksFj5tT3sF:w4uiPcDUss15tLs/EO/ACmgs15tLs

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.ddedc8e67af195385c6977a43a045a90.exe
- Size
  
  364KB
- MD5
  
  ddedc8e67af195385c6977a43a045a90
- SHA1
  
  632058daddb30c5cfe6949eeb85297c799677971
- SHA256
  
  2b224896aa3e036da4380bc51a918c396a740b1a5c55dafb5abf2ec56e76f64b
- SHA512
  
  3a4e40a53c74f0b30294a4dcca77243eb5a93e05438697544dc38fa2f0a8d318ba82a0a2545bcd15b5fde559478b7cbe7dad96520ec7507ca87f44494c510575
- SSDEEP
  
  6144:zc4/2iPcDUEHsFj5tT3sFxHnkO/ACmLksFj5tT3sF:w4uiPcDUss15tLs/EO/ACmgs15tLs
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2