2a5e90f4b4ab7c571061af20ade6bae835e10ece0c3e46f03d7bb1140478b5db | Triage

Sharing

Copy URL Twitter E-mail

General

Target

NEAS.84dea0eb1417b121cbca36eefbfec080.exe
Size

397KB
Sample

231117-fe3qaagb9w
MD5

84dea0eb1417b121cbca36eefbfec080
SHA1

35589d6a5985bcbdad09e77ea1f247437a7b820a
SHA256

2a5e90f4b4ab7c571061af20ade6bae835e10ece0c3e46f03d7bb1140478b5db
SHA512

2191d02474d6b8b12eea15bc146abe7f2ab1d9830e60312d662387feec55e0a2ee5172561cbb4f5276e9c03c646e0f1974c53d6022148af3f03ca9e2718e242d
SSDEEP

6144:hR4DYr1vhWVN0jAWRD2jvosK6mUzW96mFBuRFzWlH:hKDY5kMLx67u6quRFzWlH

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.84dea0eb1417b121cbca36eefbfec080.exe
- Size
  
  397KB
- MD5
  
  84dea0eb1417b121cbca36eefbfec080
- SHA1
  
  35589d6a5985bcbdad09e77ea1f247437a7b820a
- SHA256
  
  2a5e90f4b4ab7c571061af20ade6bae835e10ece0c3e46f03d7bb1140478b5db
- SHA512
  
  2191d02474d6b8b12eea15bc146abe7f2ab1d9830e60312d662387feec55e0a2ee5172561cbb4f5276e9c03c646e0f1974c53d6022148af3f03ca9e2718e242d
- SSDEEP
  
  6144:hR4DYr1vhWVN0jAWRD2jvosK6mUzW96mFBuRFzWlH:hKDY5kMLx67u6quRFzWlH
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2