42f589d7b5b785d07fa8a40f87de60c00eb06c6ab5df89c1e93c536cf8dccfcf | Triage

Sharing

General

Target

NEAS.1dd719624873f307a1da3c60f08262b0.exe
Size

366KB
Sample

231111-pff3caeh7x
MD5

1dd719624873f307a1da3c60f08262b0
SHA1

be26b9e0bd95ec7b2c4bb86f5d69d746c13f4e0b
SHA256

42f589d7b5b785d07fa8a40f87de60c00eb06c6ab5df89c1e93c536cf8dccfcf
SHA512

581409a278e2b5d852fd7f2a2b5f0a473ae0d6d7aec03fd14881aa5dc1545fa988c25c4381d0ab5bd5202d836cc8aae7770d86e40e59cb37f0b8eca9926a08f1
SSDEEP

6144:5dg4CfkqjwszeXmD6hUUZ4lef4Ek3u9zZawF6:5afPjTAUy4lef4Ek3u9zZawF6

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.1dd719624873f307a1da3c60f08262b0.exe
- Size
  
  366KB
- MD5
  
  1dd719624873f307a1da3c60f08262b0
- SHA1
  
  be26b9e0bd95ec7b2c4bb86f5d69d746c13f4e0b
- SHA256
  
  42f589d7b5b785d07fa8a40f87de60c00eb06c6ab5df89c1e93c536cf8dccfcf
- SHA512
  
  581409a278e2b5d852fd7f2a2b5f0a473ae0d6d7aec03fd14881aa5dc1545fa988c25c4381d0ab5bd5202d836cc8aae7770d86e40e59cb37f0b8eca9926a08f1
- SSDEEP
  
  6144:5dg4CfkqjwszeXmD6hUUZ4lef4Ek3u9zZawF6:5afPjTAUy4lef4Ek3u9zZawF6
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2