de0dcdcea00c053f2578319a3a017fafd99cf6d7d5bda06b380fe6af9a1a8ac6 | Triage

Sharing

General

Target

NEAS.08d9ca74e3a220b97ee669b83d0e129b.exe
Size

192KB
Sample

231114-kp7jfaae44
MD5

08d9ca74e3a220b97ee669b83d0e129b
SHA1

b2dbd43c7b62ec8dcc1292a539d4a691779c204a
SHA256

de0dcdcea00c053f2578319a3a017fafd99cf6d7d5bda06b380fe6af9a1a8ac6
SHA512

1a75eaffbf751f983921c6b04da99443cfb9e32b6b3cd703921e01db4bea60be295ec3c32c8d219cf2b0ac2ddb2b7879d286a72c9b6f13a96457db3877ec588c
SSDEEP

3072:aY1BHXyAGFiVHgzL20WKFcp9jRV5C/8qy4p2Y7YWlt6o:RRGkZgzL2V4cpC0L4AY7YWT6o

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.08d9ca74e3a220b97ee669b83d0e129b.exe
- Size
  
  192KB
- MD5
  
  08d9ca74e3a220b97ee669b83d0e129b
- SHA1
  
  b2dbd43c7b62ec8dcc1292a539d4a691779c204a
- SHA256
  
  de0dcdcea00c053f2578319a3a017fafd99cf6d7d5bda06b380fe6af9a1a8ac6
- SHA512
  
  1a75eaffbf751f983921c6b04da99443cfb9e32b6b3cd703921e01db4bea60be295ec3c32c8d219cf2b0ac2ddb2b7879d286a72c9b6f13a96457db3877ec588c
- SSDEEP
  
  3072:aY1BHXyAGFiVHgzL20WKFcp9jRV5C/8qy4p2Y7YWlt6o:RRGkZgzL2V4cpC0L4AY7YWT6o
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2