48fb3105f1e2b89f1941dab7a0c84ec3acca392504ffa02b664ba1b4a5f21989 | Triage

Sharing

General

Target

NEAS.c7156cb8eb2cd0f74f8d3cbce764f40b.exe
Size

407KB
Sample

231112-wv54caab4z
MD5

c7156cb8eb2cd0f74f8d3cbce764f40b
SHA1

9983b32eb50db3021521f0dbadaf172beb80be1d
SHA256

48fb3105f1e2b89f1941dab7a0c84ec3acca392504ffa02b664ba1b4a5f21989
SHA512

4a6ef274a2cc5acbdb65a21132b282efb881636f9fb20ff6ebd11023f72a90f1f5435eb53b8592a6b325fd74287d83c9fe019bc62d1af97563ef27a310c7a27e
SSDEEP

6144:0Ct35cpui6yYPaIGckfru5xyDpui6yYPaIGckSU05836pui6yYPaIGckN:x3mpV6yYP4rbpV6yYPg058KpV6yYPS

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.c7156cb8eb2cd0f74f8d3cbce764f40b.exe
- Size
  
  407KB
- MD5
  
  c7156cb8eb2cd0f74f8d3cbce764f40b
- SHA1
  
  9983b32eb50db3021521f0dbadaf172beb80be1d
- SHA256
  
  48fb3105f1e2b89f1941dab7a0c84ec3acca392504ffa02b664ba1b4a5f21989
- SHA512
  
  4a6ef274a2cc5acbdb65a21132b282efb881636f9fb20ff6ebd11023f72a90f1f5435eb53b8592a6b325fd74287d83c9fe019bc62d1af97563ef27a310c7a27e
- SSDEEP
  
  6144:0Ct35cpui6yYPaIGckfru5xyDpui6yYPaIGckSU05836pui6yYPaIGckN:x3mpV6yYP4rbpV6yYPg058KpV6yYPS
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2