58359ec1d3689750767dc40c7297ffec58cd1e138f6e102365891d7ff1a9b40d | Triage

Sharing

General

Target

NEAS.b9c488ed33e56e27217b2ce94673e5e0.exe
Size

269KB
Sample

231013-zd3hnsef8v
MD5

b9c488ed33e56e27217b2ce94673e5e0
SHA1

eb0a5b094e49d57e739d1c69c81c188048f6c65c
SHA256

58359ec1d3689750767dc40c7297ffec58cd1e138f6e102365891d7ff1a9b40d
SHA512

ff7940ad0a46d8d3e6cd0da0705cea4281ce27cdebf5f92f276e6027bf2411a87b3a29327a1ad59eaed951b729aef07783d21eea914947f5f35f1f097f3b668c
SSDEEP

6144:WvM1Iw6ogwDX4EYtCwGtMtkiXOoloMr1JeSldqP7+x55Kmj50GXoCcmASBTw2AX4:WvM1Iw6oWChtMtkM71r1MSXqPix55KIv

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.b9c488ed33e56e27217b2ce94673e5e0.exe
- Size
  
  269KB
- MD5
  
  b9c488ed33e56e27217b2ce94673e5e0
- SHA1
  
  eb0a5b094e49d57e739d1c69c81c188048f6c65c
- SHA256
  
  58359ec1d3689750767dc40c7297ffec58cd1e138f6e102365891d7ff1a9b40d
- SHA512
  
  ff7940ad0a46d8d3e6cd0da0705cea4281ce27cdebf5f92f276e6027bf2411a87b3a29327a1ad59eaed951b729aef07783d21eea914947f5f35f1f097f3b668c
- SSDEEP
  
  6144:WvM1Iw6ogwDX4EYtCwGtMtkiXOoloMr1JeSldqP7+x55Kmj50GXoCcmASBTw2AX4:WvM1Iw6oWChtMtkM71r1MSXqPix55KIv
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2