6c3cfc26a855a6be11260be0e67321a52c35ba0ef7cd76b0311d1febf8fac3ee | Triage

Sharing

General

Target

d8ced7f422d3a6fdfbdd0f4d8c908a00_NEAS
Size

344KB
Sample

240507-txh1gsgh98
MD5

d8ced7f422d3a6fdfbdd0f4d8c908a00
SHA1

f71d9b8ea3815a928c8cd359a1f8ef45b2697480
SHA256

6c3cfc26a855a6be11260be0e67321a52c35ba0ef7cd76b0311d1febf8fac3ee
SHA512

204e2dcb5c664d842f261e6e865d358ed14f71b41a9769cf1e87302bc392d6e19d0a8ad99a40875ea4d162f674818b7aa5270d224627a23afecc1990c925b054
SSDEEP

6144:AG4/rnUZg8CpX2/mnbzvdLaD6OkPgl6bmIjlQFn:AG4ACpXImbzQD6OkPgl6bmIjKn

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  d8ced7f422d3a6fdfbdd0f4d8c908a00_NEAS
- Size
  
  344KB
- MD5
  
  d8ced7f422d3a6fdfbdd0f4d8c908a00
- SHA1
  
  f71d9b8ea3815a928c8cd359a1f8ef45b2697480
- SHA256
  
  6c3cfc26a855a6be11260be0e67321a52c35ba0ef7cd76b0311d1febf8fac3ee
- SHA512
  
  204e2dcb5c664d842f261e6e865d358ed14f71b41a9769cf1e87302bc392d6e19d0a8ad99a40875ea4d162f674818b7aa5270d224627a23afecc1990c925b054
- SSDEEP
  
  6144:AG4/rnUZg8CpX2/mnbzvdLaD6OkPgl6bmIjlQFn:AG4ACpXImbzQD6OkPgl6bmIjKn
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2