c776dc0698dab25d22ec02e2034f772a46f97fe45ea30897d17f6d9a6a8ead09 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

NEAS.c5c3211cd270070ec666ca73f4475cf0.exe
Size

359KB
Sample

231112-qhpypsgg62
MD5

c5c3211cd270070ec666ca73f4475cf0
SHA1

5f792777d56d4d2e2634a9651cee7d645b3c99f6
SHA256

c776dc0698dab25d22ec02e2034f772a46f97fe45ea30897d17f6d9a6a8ead09
SHA512

88881d5fd997242d1d7841c4f1266297af64419252b563a04e2d98eb88fe1855e390f6a0c89657fce28cb6561b6fd45a1cd86a45907b39ccb6e74408ca9e6f98
SSDEEP

6144:FdGGu2WlJFYVrOigcC6oQ6+EcC6oQ6+YahBQyiTACPTRN6+YahBQyiTAgiuMRlx+:/3u2KEK9E6n9E6vah6yiMCPTRN6vah6F

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.c5c3211cd270070ec666ca73f4475cf0.exe
- Size
  
  359KB
- MD5
  
  c5c3211cd270070ec666ca73f4475cf0
- SHA1
  
  5f792777d56d4d2e2634a9651cee7d645b3c99f6
- SHA256
  
  c776dc0698dab25d22ec02e2034f772a46f97fe45ea30897d17f6d9a6a8ead09
- SHA512
  
  88881d5fd997242d1d7841c4f1266297af64419252b563a04e2d98eb88fe1855e390f6a0c89657fce28cb6561b6fd45a1cd86a45907b39ccb6e74408ca9e6f98
- SSDEEP
  
  6144:FdGGu2WlJFYVrOigcC6oQ6+EcC6oQ6+YahBQyiTACPTRN6+YahBQyiTAgiuMRlx+:/3u2KEK9E6n9E6vah6yiMCPTRN6vah6F
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2