19b739c72921a6b24a4c9ae99f3371f2f25e4d6a7bab90c256a8c44e924f8e85 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

NEAS.19b739c72921a6b24a4c9ae99f3371f2f25e4d6a7bab90c256a8c44e924f8e85.zip
Size

6.3MB
Sample

231116-w4d18aef23
MD5

98f05f2bc022a154560ceed76b78c40d
SHA1

47ce38d825866eda49043c5eae2d5c1e66e85842
SHA256

19b739c72921a6b24a4c9ae99f3371f2f25e4d6a7bab90c256a8c44e924f8e85
SHA512

3579c7601b2d70a16ed43de69d076f9a964859ab7c644dd3a558ffebc522a8f1cbf5696d12acbe65aa93b8981600d15575a2543ea953688219b5a4f9a3884936
SSDEEP

98304:V+HylBn5UqKj5xCqCeIntFlyz6pglPNTdhrFABwSa9hMWRahb3bhvvkbJzY/h3a:V+sicJeItFldgNFAK9rREb31HGJzY53a

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  continuedeveloperpro/continuedeveloperpro.exe
- Size
  
  6.3MB
- MD5
  
  4502619d3c09ff53b25a603c64a08109
- SHA1
  
  a6f097ce16ba8e28544e544dfe0913bb1bc2a17f
- SHA256
  
  94e606d5814003e1ad02da673542321ff27f3c0900e5d80c10f5a2b163e9be95
- SHA512
  
  880be8156a14e298b6451488d05fc97a40b0892ebf5b7861dc21a0c3a15d399ed108846f3aac4c9e1ec9a4fc2297c8ab486bd2351fff46e438eda31f05c0d1c8
- SSDEEP
  
  98304:qnjUqg1xhCae227fn9kdChgvp7N/xr1Angy+ppqEjazjndVRpsbJRSDjF:EWkL22jn9NKd1Agr7jQjnfDOJRSfF
Score

7^/10

persistence
- Executes dropped EXE
- Adds Run key to start application
  persistence
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1