afce004181d97af1ce306152e46736ec10d4631fe85089c1463ad9dc409459f4 | Triage

Sharing

General

Target

NEAS.99f4e4b00509070571c7113f7d51c520.exe
Size

368KB
Sample

231013-zbheqacg5x
MD5

99f4e4b00509070571c7113f7d51c520
SHA1

93d3b81651f2591174cc7f4b97828f978a8260fb
SHA256

afce004181d97af1ce306152e46736ec10d4631fe85089c1463ad9dc409459f4
SHA512

9ac7806d98a5391171055f18687eb1a6d522adfdbfc31e896d7ee77ea2e87e00a0c18d284fa104e3874ff2e7ac1a8ee5238bc7b2614184cbf64f9adccac59af3
SSDEEP

6144:JBOYyYqlAUE4f9FIUpOVw86CmOJfTo9FIUIhrcflDMxy9FIUpOVw86CmOJfTo9Fv:JBOYsGaAD6RrI1+lDMEAD6Rr2NWL

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.99f4e4b00509070571c7113f7d51c520.exe
- Size
  
  368KB
- MD5
  
  99f4e4b00509070571c7113f7d51c520
- SHA1
  
  93d3b81651f2591174cc7f4b97828f978a8260fb
- SHA256
  
  afce004181d97af1ce306152e46736ec10d4631fe85089c1463ad9dc409459f4
- SHA512
  
  9ac7806d98a5391171055f18687eb1a6d522adfdbfc31e896d7ee77ea2e87e00a0c18d284fa104e3874ff2e7ac1a8ee5238bc7b2614184cbf64f9adccac59af3
- SSDEEP
  
  6144:JBOYyYqlAUE4f9FIUpOVw86CmOJfTo9FIUIhrcflDMxy9FIUpOVw86CmOJfTo9Fv:JBOYsGaAD6RrI1+lDMEAD6Rr2NWL
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2