ec852660ac8d75100a0b97a99b15e4c833ac962f675e2571d5fea2d810832ace | Triage

Sharing

General

Target

NEAS.e25592189e2c64bff811fcd69aa47939.exe
Size

242KB
Sample

231115-vne3xada74
MD5

e25592189e2c64bff811fcd69aa47939
SHA1

e47ee6fd5b2418264f2a55975489629e63c387c4
SHA256

ec852660ac8d75100a0b97a99b15e4c833ac962f675e2571d5fea2d810832ace
SHA512

38c10cf8e5f2cad8a4452a085503e39259c6f08fc0498d669c2ad20ed94daf175882f0df412ce4e38013f5283c93baf6c3355082bad3f77d30e8a53d272a038c
SSDEEP

3072:UqbwIJOmj5ApMrV6V8ZLB6V16VKcWmjRrzKbKcWmjRrzK8VHkdYaM88KC:1wIJOm9ASrV66LB6X62UyHEYa0

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.e25592189e2c64bff811fcd69aa47939.exe
- Size
  
  242KB
- MD5
  
  e25592189e2c64bff811fcd69aa47939
- SHA1
  
  e47ee6fd5b2418264f2a55975489629e63c387c4
- SHA256
  
  ec852660ac8d75100a0b97a99b15e4c833ac962f675e2571d5fea2d810832ace
- SHA512
  
  38c10cf8e5f2cad8a4452a085503e39259c6f08fc0498d669c2ad20ed94daf175882f0df412ce4e38013f5283c93baf6c3355082bad3f77d30e8a53d272a038c
- SSDEEP
  
  3072:UqbwIJOmj5ApMrV6V8ZLB6V16VKcWmjRrzKbKcWmjRrzK8VHkdYaM88KC:1wIJOm9ASrV66LB6X62UyHEYa0
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2