9634640f60d126f570fea14f9164ad6ba01fd91da416a5afbd52f03cf037751b | Triage

Sharing

Copy URL Twitter E-mail

General

Target

NEAS.NEASd41d04c50a0a630044ae9f8b0ba4b1d5exe.exe
Size

367KB
Sample

231013-yfbbjagb53
MD5

d41d04c50a0a630044ae9f8b0ba4b1d5
SHA1

c37e1a1aa15ff4ad132bdb0ecc6526e3a3bdb73d
SHA256

9634640f60d126f570fea14f9164ad6ba01fd91da416a5afbd52f03cf037751b
SHA512

1c558e0121e5456871abc5ae77a8612852e80a22c567898c28fcc80655571c2695b9110faf9c92e5dea8eb7d4fbbc4f1d34f70bb5d80c4d1129ceb4320509152
SSDEEP

6144:MU3kzNmYPFz7SWJtnJfKXqPTX7D7FM6234lKm3mo8Yvi4KsLTFM6234lKm3cM9:DkJxt7SytJCXqP77D7FB24lwR45FB24h

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.NEASd41d04c50a0a630044ae9f8b0ba4b1d5exe.exe
- Size
  
  367KB
- MD5
  
  d41d04c50a0a630044ae9f8b0ba4b1d5
- SHA1
  
  c37e1a1aa15ff4ad132bdb0ecc6526e3a3bdb73d
- SHA256
  
  9634640f60d126f570fea14f9164ad6ba01fd91da416a5afbd52f03cf037751b
- SHA512
  
  1c558e0121e5456871abc5ae77a8612852e80a22c567898c28fcc80655571c2695b9110faf9c92e5dea8eb7d4fbbc4f1d34f70bb5d80c4d1129ceb4320509152
- SSDEEP
  
  6144:MU3kzNmYPFz7SWJtnJfKXqPTX7D7FM6234lKm3mo8Yvi4KsLTFM6234lKm3cM9:DkJxt7SytJCXqP77D7FB24lwR45FB24h
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2