58bc633405f46592a6697986a74527c5b5fdd6613160efd0941b4d52ccb6f6fa | Triage

Sharing

Copy URL Twitter E-mail

General

Target

NEAS.49bdd530c120e595cf87a78212c7bb50.exe
Size

850KB
Sample

231013-y5rd2sbb77
MD5

49bdd530c120e595cf87a78212c7bb50
SHA1

c792fbae0a8db76373a03bca9ebf984b71384f77
SHA256

58bc633405f46592a6697986a74527c5b5fdd6613160efd0941b4d52ccb6f6fa
SHA512

778a258c59d51837561df1fa0a141a13faf3e75e2668dd28385363592916080e21eb66a506e803b25f892fbf88e81db6b47dfbe311621bb4ef57b940560e7a83
SSDEEP

3072:MGjhaq5iL0beJQZt32wLji5DlsODxRPNDkjJHzW9hUd56JsuBSjw75W6vfH2i1wK:Hha8iAx+1zwjJHd6vB/75W6XmViEBG7

Score

6^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.49bdd530c120e595cf87a78212c7bb50.exe
- Size
  
  850KB
- MD5
  
  49bdd530c120e595cf87a78212c7bb50
- SHA1
  
  c792fbae0a8db76373a03bca9ebf984b71384f77
- SHA256
  
  58bc633405f46592a6697986a74527c5b5fdd6613160efd0941b4d52ccb6f6fa
- SHA512
  
  778a258c59d51837561df1fa0a141a13faf3e75e2668dd28385363592916080e21eb66a506e803b25f892fbf88e81db6b47dfbe311621bb4ef57b940560e7a83
- SSDEEP
  
  3072:MGjhaq5iL0beJQZt32wLji5DlsODxRPNDkjJHzW9hUd56JsuBSjw75W6vfH2i1wK:Hha8iAx+1zwjJHd6vB/75W6XmViEBG7
Score

6^/10

persistence
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2