d61cf65778d0345f1094f43018ce051838213c2ec175ed3a910845216cd4e51a | Triage

Sharing

General

Target

NEAS.c691136c22c765f3793be5f6b4099910.exe
Size

78KB
Sample

231111-pas5qafg47
MD5

c691136c22c765f3793be5f6b4099910
SHA1

5b0374d8600b7850ae772a19d326aadad17089ee
SHA256

d61cf65778d0345f1094f43018ce051838213c2ec175ed3a910845216cd4e51a
SHA512

4a8241128b4d853e682a933e465b5b6ea586bedceae5e0ca52cb18c48bbb6491838f71e805f63d8ec8450eb561b2a92c9e6f9fcaa5fc8ee70fe2ce91ae15bbb5
SSDEEP

1536:Hjmad9U7uZWGgt4l9sgotNiMydqOgTViVPN+zL20gJi1ie:HjZ/UqPg2LkNiM+qOgpiVPgzL20WKt

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.c691136c22c765f3793be5f6b4099910.exe
- Size
  
  78KB
- MD5
  
  c691136c22c765f3793be5f6b4099910
- SHA1
  
  5b0374d8600b7850ae772a19d326aadad17089ee
- SHA256
  
  d61cf65778d0345f1094f43018ce051838213c2ec175ed3a910845216cd4e51a
- SHA512
  
  4a8241128b4d853e682a933e465b5b6ea586bedceae5e0ca52cb18c48bbb6491838f71e805f63d8ec8450eb561b2a92c9e6f9fcaa5fc8ee70fe2ce91ae15bbb5
- SSDEEP
  
  1536:Hjmad9U7uZWGgt4l9sgotNiMydqOgTViVPN+zL20gJi1ie:HjZ/UqPg2LkNiM+qOgpiVPgzL20WKt
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2