dfb1957b7084c73345b7ec9c45e18b5dcacdce785289fde3ef58ab696d40205d | Triage

Sharing

General

Target

NEAS.3b47681b61bc852bce7c111d702cbca0.exe
Size

88KB
Sample

231013-yzczgagd3w
MD5

3b47681b61bc852bce7c111d702cbca0
SHA1

83c5bfd3721c4e5a9ac535d50272e8b58e499e70
SHA256

dfb1957b7084c73345b7ec9c45e18b5dcacdce785289fde3ef58ab696d40205d
SHA512

65c3325f3953ebc09ec1cdc423a114f1d6cae0d7347505cab4fca7d42f9f73a44a60b28641d3cdda280b95186c831438953c47d76243cda4f88d10b9ed84d29d
SSDEEP

1536:L5Xlzh18L+maGXQGjGGGa20SbZkwFL8QOVXtE1ukVd71rFZO7+90vT:FXTeL+mawdGGGL5bZHLi9EIIJ15ZO7Vr

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.3b47681b61bc852bce7c111d702cbca0.exe
- Size
  
  88KB
- MD5
  
  3b47681b61bc852bce7c111d702cbca0
- SHA1
  
  83c5bfd3721c4e5a9ac535d50272e8b58e499e70
- SHA256
  
  dfb1957b7084c73345b7ec9c45e18b5dcacdce785289fde3ef58ab696d40205d
- SHA512
  
  65c3325f3953ebc09ec1cdc423a114f1d6cae0d7347505cab4fca7d42f9f73a44a60b28641d3cdda280b95186c831438953c47d76243cda4f88d10b9ed84d29d
- SSDEEP
  
  1536:L5Xlzh18L+maGXQGjGGGa20SbZkwFL8QOVXtE1ukVd71rFZO7+90vT:FXTeL+mawdGGGL5bZHLi9EIIJ15ZO7Vr
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2