4bb4b91ce4b0770daf8ec615a81df0f9f328171a8e35f1e8102754e0a320299a | Triage

Sharing

General

Target

NEAS.NEASf17fa1e1613ea06774e4b78c0ade7579exe.exe
Size

91KB
Sample

231013-yfhevaeb7w
MD5

f17fa1e1613ea06774e4b78c0ade7579
SHA1

4fdd60ae7711849324c4f48ec7bebc17f1fefcac
SHA256

4bb4b91ce4b0770daf8ec615a81df0f9f328171a8e35f1e8102754e0a320299a
SHA512

af63b2d12043908180f7560541fcf79a6c188209a88fac0c5e3c0abab43f5171d08375056b1e5991af3b0b93edc0790da9dd789bf2f6bd8d858255394de2f146
SSDEEP

1536:cJxihc/aMkSlcgf1RDwPTG+Xw4HCe86Zyrb:AxBUS201RsPKGHnjyrb

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.NEASf17fa1e1613ea06774e4b78c0ade7579exe.exe
- Size
  
  91KB
- MD5
  
  f17fa1e1613ea06774e4b78c0ade7579
- SHA1
  
  4fdd60ae7711849324c4f48ec7bebc17f1fefcac
- SHA256
  
  4bb4b91ce4b0770daf8ec615a81df0f9f328171a8e35f1e8102754e0a320299a
- SHA512
  
  af63b2d12043908180f7560541fcf79a6c188209a88fac0c5e3c0abab43f5171d08375056b1e5991af3b0b93edc0790da9dd789bf2f6bd8d858255394de2f146
- SSDEEP
  
  1536:cJxihc/aMkSlcgf1RDwPTG+Xw4HCe86Zyrb:AxBUS201RsPKGHnjyrb
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2