fc6c20befd1283c8d0fc16f7b748c6432a9c2eb40b4a47d7237f5b9bac4fbcea | Triage

Sharing

General

Target

c98b667eed2738de8fd84ad39dc048ef_NEAS
Size

128KB
Sample

240508-t3alasdf2w
MD5

c98b667eed2738de8fd84ad39dc048ef
SHA1

690765e85f99e9d120baaa88a0d02361f4d87acf
SHA256

fc6c20befd1283c8d0fc16f7b748c6432a9c2eb40b4a47d7237f5b9bac4fbcea
SHA512

e0ecd77b087faff2267a24f1a40f4a32ea5dc75beb86ec563e9815bda07e07e25d38990d3222b7a0c756d729ffc891b9ed4f545a3fc2516857d4e4a10e2077ec
SSDEEP

3072:KZ0reYJnLB7VZY4gb2YudycAPNUedSJdEN0s4WE+3S9pui6yYPaI7DX:KY9l7V9gqNyLNvkENm+3Mpui6yYPaI/

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  c98b667eed2738de8fd84ad39dc048ef_NEAS
- Size
  
  128KB
- MD5
  
  c98b667eed2738de8fd84ad39dc048ef
- SHA1
  
  690765e85f99e9d120baaa88a0d02361f4d87acf
- SHA256
  
  fc6c20befd1283c8d0fc16f7b748c6432a9c2eb40b4a47d7237f5b9bac4fbcea
- SHA512
  
  e0ecd77b087faff2267a24f1a40f4a32ea5dc75beb86ec563e9815bda07e07e25d38990d3222b7a0c756d729ffc891b9ed4f545a3fc2516857d4e4a10e2077ec
- SSDEEP
  
  3072:KZ0reYJnLB7VZY4gb2YudycAPNUedSJdEN0s4WE+3S9pui6yYPaI7DX:KY9l7V9gqNyLNvkENm+3Mpui6yYPaI/
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2