ee5fd5f8545709df7fac0c2c4b42eea59c7865bb3d9899b3540cff673a591d79 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

NEAS.250078af91f4014c913468a8d1a5449b.exe
Size

90KB
Sample

231111-lzfddach8t
MD5

250078af91f4014c913468a8d1a5449b
SHA1

1c19dc3b585a2a2bb1a2c482c05a17842033f060
SHA256

ee5fd5f8545709df7fac0c2c4b42eea59c7865bb3d9899b3540cff673a591d79
SHA512

371aa9f57f0b7026cb256614006325a759afe43e31e0322eb958ab4c280a8af8428bb53d061b3041b57380db40ba958c825bbd912fe2ad39cdcc8438d02a0308
SSDEEP

1536:Am9+iIYrRqugQojSoIYdT8UdxBrOnuUy5jo2KqL4MGOu/Ub0VkVNK:Am43YVzgQKSc8mBF9hKq8MGOu/Ub0+NK

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.250078af91f4014c913468a8d1a5449b.exe
- Size
  
  90KB
- MD5
  
  250078af91f4014c913468a8d1a5449b
- SHA1
  
  1c19dc3b585a2a2bb1a2c482c05a17842033f060
- SHA256
  
  ee5fd5f8545709df7fac0c2c4b42eea59c7865bb3d9899b3540cff673a591d79
- SHA512
  
  371aa9f57f0b7026cb256614006325a759afe43e31e0322eb958ab4c280a8af8428bb53d061b3041b57380db40ba958c825bbd912fe2ad39cdcc8438d02a0308
- SSDEEP
  
  1536:Am9+iIYrRqugQojSoIYdT8UdxBrOnuUy5jo2KqL4MGOu/Ub0VkVNK:Am43YVzgQKSc8mBF9hKq8MGOu/Ub0+NK
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2