c15af49c8d81cb18062e3a42e737c23af5987608d94bad589bddd777dc6d4114 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

NEAS.d1c516f2a70fea5514003741119060a0.exe
Size

99KB
Sample

231115-gfwh2aec9s
MD5

d1c516f2a70fea5514003741119060a0
SHA1

3706fb00c86d0b58898388f0a48a2ba9b492c927
SHA256

c15af49c8d81cb18062e3a42e737c23af5987608d94bad589bddd777dc6d4114
SHA512

f39c888f11f797a6650e9f0b1d4a8aaae8cce18523ca162018569b48d7951c172a399d14c14c8f3cf21861231966c9276ace65c172e7ca132ba4cdaeb89bb5a3
SSDEEP

3072:daxzDyDwCE2VFw44444444444444j44444443444444qH6eynpwoTRBmDRGGurhB:4JyDwA844444444444444j444444434w

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.d1c516f2a70fea5514003741119060a0.exe
- Size
  
  99KB
- MD5
  
  d1c516f2a70fea5514003741119060a0
- SHA1
  
  3706fb00c86d0b58898388f0a48a2ba9b492c927
- SHA256
  
  c15af49c8d81cb18062e3a42e737c23af5987608d94bad589bddd777dc6d4114
- SHA512
  
  f39c888f11f797a6650e9f0b1d4a8aaae8cce18523ca162018569b48d7951c172a399d14c14c8f3cf21861231966c9276ace65c172e7ca132ba4cdaeb89bb5a3
- SSDEEP
  
  3072:daxzDyDwCE2VFw44444444444444j44444443444444qH6eynpwoTRBmDRGGurhB:4JyDwA844444444444444j444444434w
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2