c03b5307f7d6950c9f17dbfb5912c1aa54334293bef17ac30ed462739ec5a087 | Triage

Sharing

General

Target

1da1bbf894feec0a922a090e8a8ca330_NEAS
Size

64KB
Sample

240507-k6s3dahh4z
MD5

1da1bbf894feec0a922a090e8a8ca330
SHA1

857dc52137092547be903f2c7ddb59c59bc4896f
SHA256

c03b5307f7d6950c9f17dbfb5912c1aa54334293bef17ac30ed462739ec5a087
SHA512

6ffd9d1cd3e02b008b7d7de7cab3bdf2c8e19dd24364b3ef92c23e289736cc807aeae7a26b7b7e1636362ce1bf25023512977f09d5458c750d5ee0d993e1c2cc
SSDEEP

1536:r1uw0ZQGO+4p3btw5i5jgILU17tA2LyAMCeW:rMwF1Pbq+a7txypW

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  1da1bbf894feec0a922a090e8a8ca330_NEAS
- Size
  
  64KB
- MD5
  
  1da1bbf894feec0a922a090e8a8ca330
- SHA1
  
  857dc52137092547be903f2c7ddb59c59bc4896f
- SHA256
  
  c03b5307f7d6950c9f17dbfb5912c1aa54334293bef17ac30ed462739ec5a087
- SHA512
  
  6ffd9d1cd3e02b008b7d7de7cab3bdf2c8e19dd24364b3ef92c23e289736cc807aeae7a26b7b7e1636362ce1bf25023512977f09d5458c750d5ee0d993e1c2cc
- SSDEEP
  
  1536:r1uw0ZQGO+4p3btw5i5jgILU17tA2LyAMCeW:rMwF1Pbq+a7txypW
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2