03acc1182d477427d98477b020e489cc06dd75e0e01d7bba15a02ee1762b9d40 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

NEAS.c6b4d43af02323de411b69a3460881f0.exe
Size

100KB
Sample

231111-n7sd1sff99
MD5

c6b4d43af02323de411b69a3460881f0
SHA1

3cc84a6478f0be22a828ca1af44f69e5b925b532
SHA256

03acc1182d477427d98477b020e489cc06dd75e0e01d7bba15a02ee1762b9d40
SHA512

f307eef329bb6975842513a6aa5a00f1301968ec57320da7bbd5332ce2afd8430ebb27df8955c52800b13d6e0d15d5c70d54569f36d9fcf900f2be01a4edf63a
SSDEEP

3072:5Sf8O0CueHI0wUk4p2ahpXugb3a3+X13XRzT:5O0CueHI0885XH7aOl3BzT

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.c6b4d43af02323de411b69a3460881f0.exe
- Size
  
  100KB
- MD5
  
  c6b4d43af02323de411b69a3460881f0
- SHA1
  
  3cc84a6478f0be22a828ca1af44f69e5b925b532
- SHA256
  
  03acc1182d477427d98477b020e489cc06dd75e0e01d7bba15a02ee1762b9d40
- SHA512
  
  f307eef329bb6975842513a6aa5a00f1301968ec57320da7bbd5332ce2afd8430ebb27df8955c52800b13d6e0d15d5c70d54569f36d9fcf900f2be01a4edf63a
- SSDEEP
  
  3072:5Sf8O0CueHI0wUk4p2ahpXugb3a3+X13XRzT:5O0CueHI0885XH7aOl3BzT
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2