17f2b332717343333670c383e3c49c03e6e74e3b48d8e908ed9dc451096f0b4c | Triage

Sharing

General

Target

NEAS.NEASf784bb8754780d2c7a0ac6a36f3a9940exe.exe
Size

285KB
Sample

231013-yfjmxaeb9y
MD5

f784bb8754780d2c7a0ac6a36f3a9940
SHA1

8ab1f88cb1013b35143c48800736086a182b8d43
SHA256

17f2b332717343333670c383e3c49c03e6e74e3b48d8e908ed9dc451096f0b4c
SHA512

2a164ac137718a73c8656d6e954e4fbb64dfcca4d9597401df19f5049fe18b7e0f07458359eae38e6731491f825b2cbc81e9ef782a0a9905edf358ca25db1885
SSDEEP

3072:xMyXzGSUnsAZl/j37PzHDXbvTnr/j37PzHLfDXbvTnr/jPzfDXbvTnr37PzHLfD7:1jZUsiyrKQIoi7tWa

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.NEASf784bb8754780d2c7a0ac6a36f3a9940exe.exe
- Size
  
  285KB
- MD5
  
  f784bb8754780d2c7a0ac6a36f3a9940
- SHA1
  
  8ab1f88cb1013b35143c48800736086a182b8d43
- SHA256
  
  17f2b332717343333670c383e3c49c03e6e74e3b48d8e908ed9dc451096f0b4c
- SHA512
  
  2a164ac137718a73c8656d6e954e4fbb64dfcca4d9597401df19f5049fe18b7e0f07458359eae38e6731491f825b2cbc81e9ef782a0a9905edf358ca25db1885
- SSDEEP
  
  3072:xMyXzGSUnsAZl/j37PzHDXbvTnr/j37PzHLfDXbvTnr/jPzfDXbvTnr37PzHLfD7:1jZUsiyrKQIoi7tWa
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2