61567e32cf32e83e1deeb841986e326b275a59e7af296e44765dea88e096a7b9 | Triage

Sharing

General

Target

NEAS.f97b5d65235b624713117e0da4fc14b0.exe
Size

377KB
Sample

231014-kajttsag7s
MD5

f97b5d65235b624713117e0da4fc14b0
SHA1

3e6db760e2c59c38cedb8abcf39fa8e1970b1317
SHA256

61567e32cf32e83e1deeb841986e326b275a59e7af296e44765dea88e096a7b9
SHA512

4b14c59df3b8031d88f41741ee825b6d2e12b11304fae0603c4400c00eac9aee996fbd6b7eb0aa1fd63847076a6efd7c5a6e8615314510fda81ba40e919eb39c
SSDEEP

6144:it03a62hzpSNxV2qcJVLNyTiY6wDyIJ2r/bl5hy:Os52hzpHq8eTi30yIQrDl5hy

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.f97b5d65235b624713117e0da4fc14b0.exe
- Size
  
  377KB
- MD5
  
  f97b5d65235b624713117e0da4fc14b0
- SHA1
  
  3e6db760e2c59c38cedb8abcf39fa8e1970b1317
- SHA256
  
  61567e32cf32e83e1deeb841986e326b275a59e7af296e44765dea88e096a7b9
- SHA512
  
  4b14c59df3b8031d88f41741ee825b6d2e12b11304fae0603c4400c00eac9aee996fbd6b7eb0aa1fd63847076a6efd7c5a6e8615314510fda81ba40e919eb39c
- SSDEEP
  
  6144:it03a62hzpSNxV2qcJVLNyTiY6wDyIJ2r/bl5hy:Os52hzpHq8eTi30yIQrDl5hy
Score

7^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2