d0ba571fc42c87c206065639df5bb45649537b62fe8f29ad3e5b58198f8ed1ec | Triage

Sharing

General

Target

NEAS.1c93bb6897d28817e722056c4409ca80.exe
Size

225KB
Sample

231116-1abq8afg35
MD5

1c93bb6897d28817e722056c4409ca80
SHA1

e43c5bbb8f7ee5abd514ce17d712d415bfd674b0
SHA256

d0ba571fc42c87c206065639df5bb45649537b62fe8f29ad3e5b58198f8ed1ec
SHA512

e063d4796f506d0763f1890178fe48f10538bbb55ae8fa6e9c36bc73a7b41eabc23e62c858bc5a9b6e52ba270136427585f776a250d3117e23bbd3010afeb0a9
SSDEEP

3072:vtbbbbFLcM92DCfh8fcAMzFzMJvb8RZabP4QEP7EPaERzcUf7lPasVOCvFmqcCzV:vom2efufqcdzfvV4PdAJk0d

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.1c93bb6897d28817e722056c4409ca80.exe
- Size
  
  225KB
- MD5
  
  1c93bb6897d28817e722056c4409ca80
- SHA1
  
  e43c5bbb8f7ee5abd514ce17d712d415bfd674b0
- SHA256
  
  d0ba571fc42c87c206065639df5bb45649537b62fe8f29ad3e5b58198f8ed1ec
- SHA512
  
  e063d4796f506d0763f1890178fe48f10538bbb55ae8fa6e9c36bc73a7b41eabc23e62c858bc5a9b6e52ba270136427585f776a250d3117e23bbd3010afeb0a9
- SSDEEP
  
  3072:vtbbbbFLcM92DCfh8fcAMzFzMJvb8RZabP4QEP7EPaERzcUf7lPasVOCvFmqcCzV:vom2efufqcdzfvV4PdAJk0d
Score

8^/10

persistence
- Modifies AppInit DLL entries
  persistence
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2