f0ac50b317c8ec3501c6cc699c7d0aef2cfcbf6d378a1b05d7ae9780e05646a3 | Triage

Sharing

General

Target

NEAS.345033a44a6eccc2ca1d7ac3eda1d260.exe
Size

60KB
Sample

231014-wevyfaah99
MD5

345033a44a6eccc2ca1d7ac3eda1d260
SHA1

6446152d67a0b2c179f87f13050ad3a9c334e5c4
SHA256

f0ac50b317c8ec3501c6cc699c7d0aef2cfcbf6d378a1b05d7ae9780e05646a3
SHA512

256e79a7762b41872bce276535c952131d21a14b50ad284040a9fa6bec7465f857c1470d2323e8635b94c8729ed2aa75e6e27840eaf16f36f66f87e1752697ce
SSDEEP

1536:DU1m1dYayGF8tvnAmzScQEaI62MNdGp4ruB86l1r:41mBFYIFpI9OdGSruB86l1r

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.345033a44a6eccc2ca1d7ac3eda1d260.exe
- Size
  
  60KB
- MD5
  
  345033a44a6eccc2ca1d7ac3eda1d260
- SHA1
  
  6446152d67a0b2c179f87f13050ad3a9c334e5c4
- SHA256
  
  f0ac50b317c8ec3501c6cc699c7d0aef2cfcbf6d378a1b05d7ae9780e05646a3
- SHA512
  
  256e79a7762b41872bce276535c952131d21a14b50ad284040a9fa6bec7465f857c1470d2323e8635b94c8729ed2aa75e6e27840eaf16f36f66f87e1752697ce
- SSDEEP
  
  1536:DU1m1dYayGF8tvnAmzScQEaI62MNdGp4ruB86l1r:41mBFYIFpI9OdGSruB86l1r
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2