2051ccba267703952454fc301bc12189e7c3f0f3c4696c58d5024ea95d4d554e | Triage

Sharing

Copy URL Twitter E-mail

General

Target

NEAS.c3e72b46fe7fa1b61754b597a712bd40.exe
Size

379KB
Sample

231112-1qqkbada29
MD5

c3e72b46fe7fa1b61754b597a712bd40
SHA1

cc638aeca4608992769c77e6b5791476ad8252b1
SHA256

2051ccba267703952454fc301bc12189e7c3f0f3c4696c58d5024ea95d4d554e
SHA512

2953aa208f20ac6c2069aea833769f087a3abc2d368611407c50f2b6cae7598ac2f8eecc179ea5e46c694ecbc91023e9bbc77a3c9fc9ecc18a34f232523625fa
SSDEEP

6144:f+yIdIli7O/0xLxli7O//yb1c3ccU0S6GyTgfiEkrE:f+xK6vxr6lGHaXyTg6EkrE

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.c3e72b46fe7fa1b61754b597a712bd40.exe
- Size
  
  379KB
- MD5
  
  c3e72b46fe7fa1b61754b597a712bd40
- SHA1
  
  cc638aeca4608992769c77e6b5791476ad8252b1
- SHA256
  
  2051ccba267703952454fc301bc12189e7c3f0f3c4696c58d5024ea95d4d554e
- SHA512
  
  2953aa208f20ac6c2069aea833769f087a3abc2d368611407c50f2b6cae7598ac2f8eecc179ea5e46c694ecbc91023e9bbc77a3c9fc9ecc18a34f232523625fa
- SSDEEP
  
  6144:f+yIdIli7O/0xLxli7O//yb1c3ccU0S6GyTgfiEkrE:f+xK6vxr6lGHaXyTg6EkrE
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2