434324ab6e3bd86fa5e9837a70afbf519e2b66d3bc48fb6b898dd1e3a802975e | Triage

Sharing

Copy URL Twitter E-mail

General

Target

NEAS.NEASe37d9be0799150f1b2fd0298a5da3f4aexe.exe
Size

99KB
Sample

231013-ydyztagb36
MD5

e37d9be0799150f1b2fd0298a5da3f4a
SHA1

b32da8773528c567db2d07f71e909ff38d648043
SHA256

434324ab6e3bd86fa5e9837a70afbf519e2b66d3bc48fb6b898dd1e3a802975e
SHA512

502d31b292a906ee87c5a2251f1e9c93aed61e0ed4dd43f651464f0b52d7929a7f822d7522de1a0b9be16a08d9a6307558ee3cae26d2d29184bbe8cea506a363
SSDEEP

1536:3UC+4xx+yrLwLrffREVuC+4+44jugiE0RQykRvwtycORTRQ6mRQQRRQjGmZrhAVI:3eA+y3wLrnLWeykpwoTRBmDRGGurhUI

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.NEASe37d9be0799150f1b2fd0298a5da3f4aexe.exe
- Size
  
  99KB
- MD5
  
  e37d9be0799150f1b2fd0298a5da3f4a
- SHA1
  
  b32da8773528c567db2d07f71e909ff38d648043
- SHA256
  
  434324ab6e3bd86fa5e9837a70afbf519e2b66d3bc48fb6b898dd1e3a802975e
- SHA512
  
  502d31b292a906ee87c5a2251f1e9c93aed61e0ed4dd43f651464f0b52d7929a7f822d7522de1a0b9be16a08d9a6307558ee3cae26d2d29184bbe8cea506a363
- SSDEEP
  
  1536:3UC+4xx+yrLwLrffREVuC+4+44jugiE0RQykRvwtycORTRQ6mRQQRRQjGmZrhAVI:3eA+y3wLrnLWeykpwoTRBmDRGGurhUI
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2