8b7fac3b58e03cab0aaf88aab291588f1373c32e2b11a97e8a281f0cb332cbff | Triage

Sharing

General

Target

NEAS.b3586286505121a1d7e10e12be58fe50.exe
Size

145KB
Sample

231013-zdgafaec4z
MD5

b3586286505121a1d7e10e12be58fe50
SHA1

fdfb8fe1b2d7b0fab8527a52d20cb8d1f0db346a
SHA256

8b7fac3b58e03cab0aaf88aab291588f1373c32e2b11a97e8a281f0cb332cbff
SHA512

9a6f43d99bfb427c18dd7c0d4b21e5d7a13ee650cb04faf9f0875f39725dc0a000dcb0609920098025ba8a50b81686dd6f030415c2436deced86082047da3dd3
SSDEEP

3072:19IUroYjt6c2kqrifbdB7dYk1Bx8DpsV64:19IUroutr2kym/89b4

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.b3586286505121a1d7e10e12be58fe50.exe
- Size
  
  145KB
- MD5
  
  b3586286505121a1d7e10e12be58fe50
- SHA1
  
  fdfb8fe1b2d7b0fab8527a52d20cb8d1f0db346a
- SHA256
  
  8b7fac3b58e03cab0aaf88aab291588f1373c32e2b11a97e8a281f0cb332cbff
- SHA512
  
  9a6f43d99bfb427c18dd7c0d4b21e5d7a13ee650cb04faf9f0875f39725dc0a000dcb0609920098025ba8a50b81686dd6f030415c2436deced86082047da3dd3
- SSDEEP
  
  3072:19IUroYjt6c2kqrifbdB7dYk1Bx8DpsV64:19IUroutr2kym/89b4
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2