d4789a50479fafb28b1cb4399e37adc77bec0f21fd96265d9c3dbc1eb49dbcc4 | Triage

Sharing

General

Target

NEAS.a17f31d5c4b27030d8470c3cd5f25130.exe
Size

107KB
Sample

231013-zbzc8sfb43
MD5

a17f31d5c4b27030d8470c3cd5f25130
SHA1

8f4629526ddf3fdfe787d7a732a59dda657e9fad
SHA256

d4789a50479fafb28b1cb4399e37adc77bec0f21fd96265d9c3dbc1eb49dbcc4
SHA512

736c37e39307886cec0a1a2ad6d5884933ce82ee632c5c489cf2285ad4fbff06385f4fd24eea8519f3d8c376bbb112245438603e7e6bc3688358d76a6ac12efd
SSDEEP

1536:6pJOSgx5yzcwdjjBOlmJv2LubaIZTJ+7LhkiB0MPiKeEAgHD/Chx3y:6pwQzpdQ80ubaMU7uihJ5233y

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.a17f31d5c4b27030d8470c3cd5f25130.exe
- Size
  
  107KB
- MD5
  
  a17f31d5c4b27030d8470c3cd5f25130
- SHA1
  
  8f4629526ddf3fdfe787d7a732a59dda657e9fad
- SHA256
  
  d4789a50479fafb28b1cb4399e37adc77bec0f21fd96265d9c3dbc1eb49dbcc4
- SHA512
  
  736c37e39307886cec0a1a2ad6d5884933ce82ee632c5c489cf2285ad4fbff06385f4fd24eea8519f3d8c376bbb112245438603e7e6bc3688358d76a6ac12efd
- SSDEEP
  
  1536:6pJOSgx5yzcwdjjBOlmJv2LubaIZTJ+7LhkiB0MPiKeEAgHD/Chx3y:6pwQzpdQ80ubaMU7uihJ5233y
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2