47ee4eb0e43576a34a24ee7cebbf4063caa4e32a0551fd1149ff1145342a12f9 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

NEAS.c10df6faa3f35e15cce6f2981387f450.exe
Size

1.9MB
Sample

231112-lnzmwafa33
MD5

c10df6faa3f35e15cce6f2981387f450
SHA1

b090efad49368cb390e9f6161d1a106e2b840631
SHA256

47ee4eb0e43576a34a24ee7cebbf4063caa4e32a0551fd1149ff1145342a12f9
SHA512

57a3b88c48b1da13ede2021cb3362b0b5cde1a8b185af359ced5878d5452093e0a02f4fa48739025e31a47a8848287eae0e917a99ae04ead88448f4cccefc79c
SSDEEP

24576:HHNIVyeNIVy2jUKaNIVyeNIVy2jUtc9uO2NIVyeNIVy2jUKaNIVyeNIVy2jUO:HGyj1yj3uOpyj1yjH

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.c10df6faa3f35e15cce6f2981387f450.exe
- Size
  
  1.9MB
- MD5
  
  c10df6faa3f35e15cce6f2981387f450
- SHA1
  
  b090efad49368cb390e9f6161d1a106e2b840631
- SHA256
  
  47ee4eb0e43576a34a24ee7cebbf4063caa4e32a0551fd1149ff1145342a12f9
- SHA512
  
  57a3b88c48b1da13ede2021cb3362b0b5cde1a8b185af359ced5878d5452093e0a02f4fa48739025e31a47a8848287eae0e917a99ae04ead88448f4cccefc79c
- SSDEEP
  
  24576:HHNIVyeNIVy2jUKaNIVyeNIVy2jUtc9uO2NIVyeNIVy2jUKaNIVyeNIVy2jUO:HGyj1yj3uOpyj1yjH
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2