a1ef7b16a5142e5ae71bf4029c3813e633ef073fcd3d2b520ca49fbebdb7a239 | Triage

Sharing

General

Target

NEAS.c38b88818b52dd1a6ee021ca00ad6690.exe
Size

149KB
Sample

231118-d5zp7sac47
MD5

c38b88818b52dd1a6ee021ca00ad6690
SHA1

8ad34103214a9fbf8bff8cbf3f82b2433e5187d9
SHA256

a1ef7b16a5142e5ae71bf4029c3813e633ef073fcd3d2b520ca49fbebdb7a239
SHA512

2cd4f8ba0b9503a5753e3aa9dc197449adb8d304ce4496faa1a73db46f60a1e74bb1cf21c1c0bc7fa345ee485e46ee624c22b2e02adfcabb2235488c03a53e23
SSDEEP

3072:7jQTRuqkO3ONdZR4bVcyCq6F2N431v/MepeTP6NyGDtB8YPas2AB+s7:aRuqp+NdZR4sFMeG6MGDtV2Y7

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.c38b88818b52dd1a6ee021ca00ad6690.exe
- Size
  
  149KB
- MD5
  
  c38b88818b52dd1a6ee021ca00ad6690
- SHA1
  
  8ad34103214a9fbf8bff8cbf3f82b2433e5187d9
- SHA256
  
  a1ef7b16a5142e5ae71bf4029c3813e633ef073fcd3d2b520ca49fbebdb7a239
- SHA512
  
  2cd4f8ba0b9503a5753e3aa9dc197449adb8d304ce4496faa1a73db46f60a1e74bb1cf21c1c0bc7fa345ee485e46ee624c22b2e02adfcabb2235488c03a53e23
- SSDEEP
  
  3072:7jQTRuqkO3ONdZR4bVcyCq6F2N431v/MepeTP6NyGDtB8YPas2AB+s7:aRuqp+NdZR4sFMeG6MGDtV2Y7
Score

8^/10

persistence
- Modifies AppInit DLL entries
  persistence
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2