1868a808087de1d700e8a6cd8ba62e51623816a6ae840970b59cf9e9e675cba1 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

NEAS.e95cd5e95944c2208083a812e6feeb70.exe
Size

204KB
Sample

231116-lm928ahf87
MD5

e95cd5e95944c2208083a812e6feeb70
SHA1

1498ad985a4ce05ece8bc7abdbea1e71a5eac83e
SHA256

1868a808087de1d700e8a6cd8ba62e51623816a6ae840970b59cf9e9e675cba1
SHA512

c33bd517a2324f8e5878f0c8de27b2385b1811977666a5b71da5232e39488b4600eed76500df72f13bc5c7fe7818886ca301164daf69af8350d9040b0252d3f0
SSDEEP

3072:2+ejgWgTsDAJJRjOV2/pwb5ryT5tlDhB2IFTLFZhh2D+0caj3kyRACHfU:qjg3JJF35tlDhB2Cn9ozHfU

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.e95cd5e95944c2208083a812e6feeb70.exe
- Size
  
  204KB
- MD5
  
  e95cd5e95944c2208083a812e6feeb70
- SHA1
  
  1498ad985a4ce05ece8bc7abdbea1e71a5eac83e
- SHA256
  
  1868a808087de1d700e8a6cd8ba62e51623816a6ae840970b59cf9e9e675cba1
- SHA512
  
  c33bd517a2324f8e5878f0c8de27b2385b1811977666a5b71da5232e39488b4600eed76500df72f13bc5c7fe7818886ca301164daf69af8350d9040b0252d3f0
- SSDEEP
  
  3072:2+ejgWgTsDAJJRjOV2/pwb5ryT5tlDhB2IFTLFZhh2D+0caj3kyRACHfU:qjg3JJF35tlDhB2Cn9ozHfU
Score

8^/10

persistence
- Modifies AppInit DLL entries
  persistence
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2