be0ada52c271bb7b9caae849a7a2fb8199074342bee3a59b49ba117ffc0e0ad0 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

NEAS.b4dcac0e984100996b7a0419934219ca.exe
Size

92KB
Sample

231114-lwxs9abd66
MD5

b4dcac0e984100996b7a0419934219ca
SHA1

6975020a75051ddf408375a9418e3171076422e8
SHA256

be0ada52c271bb7b9caae849a7a2fb8199074342bee3a59b49ba117ffc0e0ad0
SHA512

fc3cb00a609a551488acd307e47542d9da3946e29d3ff6bf3caa256384a0b827c6acdc38642a59ae78aa0fbaaf873350bb42c6fad475853b9086e85d849a2451
SSDEEP

1536:hB6LYyZTUFYJ6ncS/ZWeE16HfjjXq+66DFUABABOVLefE3:8Y4MncS/c/16/jj6+JB8M3

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.b4dcac0e984100996b7a0419934219ca.exe
- Size
  
  92KB
- MD5
  
  b4dcac0e984100996b7a0419934219ca
- SHA1
  
  6975020a75051ddf408375a9418e3171076422e8
- SHA256
  
  be0ada52c271bb7b9caae849a7a2fb8199074342bee3a59b49ba117ffc0e0ad0
- SHA512
  
  fc3cb00a609a551488acd307e47542d9da3946e29d3ff6bf3caa256384a0b827c6acdc38642a59ae78aa0fbaaf873350bb42c6fad475853b9086e85d849a2451
- SSDEEP
  
  1536:hB6LYyZTUFYJ6ncS/ZWeE16HfjjXq+66DFUABABOVLefE3:8Y4MncS/c/16/jj6+JB8M3
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2