2d3a067cbe23bff9a9407f9a573daa86e7a8c252ac7156cbb0bea15f9d19321e | Triage

Sharing

General

Target

NEAS.c386ec8a22b59c32dbc680db6ebe2bf4.exe
Size

96KB
Sample

231111-mr62ssdg7x
MD5

c386ec8a22b59c32dbc680db6ebe2bf4
SHA1

352bcb93618821cdc6da046a908d9a8301dfe5c9
SHA256

2d3a067cbe23bff9a9407f9a573daa86e7a8c252ac7156cbb0bea15f9d19321e
SHA512

64efcd4580689e47848b31d2568146c00f97571863a6c6f4ee189c62761c40c73b8f945079f9be1fcd5dd0fa0992843e4af83f422ff7d943efc116599397da49
SSDEEP

1536:jsYHI/OxsYK2uoqOtBXbDBdonR0R5QdQ5bWJhtTqX8bfNInduV9jojTIvjrH:wEsXdMFYRm5Qd/JhFRfNud69jc0vf

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.c386ec8a22b59c32dbc680db6ebe2bf4.exe
- Size
  
  96KB
- MD5
  
  c386ec8a22b59c32dbc680db6ebe2bf4
- SHA1
  
  352bcb93618821cdc6da046a908d9a8301dfe5c9
- SHA256
  
  2d3a067cbe23bff9a9407f9a573daa86e7a8c252ac7156cbb0bea15f9d19321e
- SHA512
  
  64efcd4580689e47848b31d2568146c00f97571863a6c6f4ee189c62761c40c73b8f945079f9be1fcd5dd0fa0992843e4af83f422ff7d943efc116599397da49
- SSDEEP
  
  1536:jsYHI/OxsYK2uoqOtBXbDBdonR0R5QdQ5bWJhtTqX8bfNInduV9jojTIvjrH:wEsXdMFYRm5Qd/JhFRfNud69jc0vf
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2