c540f43fcd5fe0440416498343a38f883001da8c595d306fea294d1b0a815b54 | Triage

Sharing

General

Target

NEAS.d33bb841eb6e78db77ff100da7991860.exe
Size

98KB
Sample

231118-gnlc2ada3w
MD5

d33bb841eb6e78db77ff100da7991860
SHA1

ce37423c752110aa2c7c6fc801feea961967923d
SHA256

c540f43fcd5fe0440416498343a38f883001da8c595d306fea294d1b0a815b54
SHA512

46094e17e67fbcf71559d0decd238ec2119bb6d101650db71d6dd9e1914447b90bf0a679aa62bcbee23332523850d74a2bb39b61c08a749b4b5efdc5bb4cebdb
SSDEEP

3072:mZAHHE4LScugTkkYyHrPEseFKPD375lHzpa1P:menXuqLPEseYr75lHzpaF

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.d33bb841eb6e78db77ff100da7991860.exe
- Size
  
  98KB
- MD5
  
  d33bb841eb6e78db77ff100da7991860
- SHA1
  
  ce37423c752110aa2c7c6fc801feea961967923d
- SHA256
  
  c540f43fcd5fe0440416498343a38f883001da8c595d306fea294d1b0a815b54
- SHA512
  
  46094e17e67fbcf71559d0decd238ec2119bb6d101650db71d6dd9e1914447b90bf0a679aa62bcbee23332523850d74a2bb39b61c08a749b4b5efdc5bb4cebdb
- SSDEEP
  
  3072:mZAHHE4LScugTkkYyHrPEseFKPD375lHzpa1P:menXuqLPEseYr75lHzpaF
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2