dbc042cfa0a5eec298f9e1fc8aaa2c8c5e1d0553ff30f0daabfe9660a51ca652 | Triage

Sharing

General

Target

NEAS.b3dc7887ed54348b8f466030aad44390.exe
Size

395KB
Sample

231113-d9r6xsha85
MD5

b3dc7887ed54348b8f466030aad44390
SHA1

3497b809c5ff1b3fcda612d80af7cb9c16f962d4
SHA256

dbc042cfa0a5eec298f9e1fc8aaa2c8c5e1d0553ff30f0daabfe9660a51ca652
SHA512

ef6b318dd13251a35feb0341a20423dae0c642c394499709cdcec4fc178c8b2772da295c7ad7809abd460685f533237a294035d4dea9a6c5895cb80fbd6d552c
SSDEEP

6144:zmU63s4y70u4HXs4yr0u490u4Ds4yvW8lM:v14O0dHc4i0d90dA4X

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.b3dc7887ed54348b8f466030aad44390.exe
- Size
  
  395KB
- MD5
  
  b3dc7887ed54348b8f466030aad44390
- SHA1
  
  3497b809c5ff1b3fcda612d80af7cb9c16f962d4
- SHA256
  
  dbc042cfa0a5eec298f9e1fc8aaa2c8c5e1d0553ff30f0daabfe9660a51ca652
- SHA512
  
  ef6b318dd13251a35feb0341a20423dae0c642c394499709cdcec4fc178c8b2772da295c7ad7809abd460685f533237a294035d4dea9a6c5895cb80fbd6d552c
- SSDEEP
  
  6144:zmU63s4y70u4HXs4yr0u490u4Ds4yvW8lM:v14O0dHc4i0d90dA4X
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2