5b5a446fc3df7d7576fce7322fdfc9750756a8bd43ed3ac160200119d1f5201c | Triage

Sharing

General

Target

NEAS.382c35c807e19f9eca77412f9afd0960.exe
Size

229KB
Sample

231013-yy66xsgc2w
MD5

382c35c807e19f9eca77412f9afd0960
SHA1

f1e3e3934c82d81d5a5bd1a7516ab17cfcb45c77
SHA256

5b5a446fc3df7d7576fce7322fdfc9750756a8bd43ed3ac160200119d1f5201c
SHA512

590f71801de6a3ce5072274ffe9247b3072ff9d1a97fae90aa8fc5d54ce73f7ea731204b7acbf939404c8c94f524d330e17513ec7ee1a45980105798f10c4533
SSDEEP

3072:vQpaHhY7mzPit2vDUCEEg6NEMFR8n5j8Y3bwf1nFzwSAJB8FgBY5nd/Mbj8afmiD:Yp1MDiMTFR6jG1n6xJmPMbjjfxKml2E

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.382c35c807e19f9eca77412f9afd0960.exe
- Size
  
  229KB
- MD5
  
  382c35c807e19f9eca77412f9afd0960
- SHA1
  
  f1e3e3934c82d81d5a5bd1a7516ab17cfcb45c77
- SHA256
  
  5b5a446fc3df7d7576fce7322fdfc9750756a8bd43ed3ac160200119d1f5201c
- SHA512
  
  590f71801de6a3ce5072274ffe9247b3072ff9d1a97fae90aa8fc5d54ce73f7ea731204b7acbf939404c8c94f524d330e17513ec7ee1a45980105798f10c4533
- SSDEEP
  
  3072:vQpaHhY7mzPit2vDUCEEg6NEMFR8n5j8Y3bwf1nFzwSAJB8FgBY5nd/Mbj8afmiD:Yp1MDiMTFR6jG1n6xJmPMbjjfxKml2E
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2