d7a8bef81955d010407f9f16d37e2649e0943aeae89344010f1b3fabfc9edceb | Triage

Sharing

Copy URL Twitter E-mail

General

Target

NEAS.2356f00fcad74213e1fa69914ab4554f.exe
Size

81KB
Sample

231116-w4qp1sfh4z
MD5

2356f00fcad74213e1fa69914ab4554f
SHA1

dc7d2cd270dc6aceb3e81c995d7bae2435f8c9c1
SHA256

d7a8bef81955d010407f9f16d37e2649e0943aeae89344010f1b3fabfc9edceb
SHA512

a71b9456f758a58138cb2d25eeecb1a402ce5fa02738016d0a2d9c8ffbe203419befe9bcdbfeb0974147c3cd2c8db1509d3fccab86e4d4af97d426f1efc67d01
SSDEEP

1536:nuQ5JY0bTLvuy1rEcQ9oZdIl7m4LO++/+1m6KadhYxU33HX0L:hHiylQXl/LrCimBaH8UH30L

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.2356f00fcad74213e1fa69914ab4554f.exe
- Size
  
  81KB
- MD5
  
  2356f00fcad74213e1fa69914ab4554f
- SHA1
  
  dc7d2cd270dc6aceb3e81c995d7bae2435f8c9c1
- SHA256
  
  d7a8bef81955d010407f9f16d37e2649e0943aeae89344010f1b3fabfc9edceb
- SHA512
  
  a71b9456f758a58138cb2d25eeecb1a402ce5fa02738016d0a2d9c8ffbe203419befe9bcdbfeb0974147c3cd2c8db1509d3fccab86e4d4af97d426f1efc67d01
- SSDEEP
  
  1536:nuQ5JY0bTLvuy1rEcQ9oZdIl7m4LO++/+1m6KadhYxU33HX0L:hHiylQXl/LrCimBaH8UH30L
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2