586945aee0063973afe7646015011910c182ea0ab980b0f25a05e3174a7e55dd | Triage

Sharing

Copy URL Twitter E-mail

General

Target

NEAS.4187cdcf0e6227e427ae486941fda1d0.exe
Size

91KB
Sample

231014-wf1v3shf3y
MD5

4187cdcf0e6227e427ae486941fda1d0
SHA1

d82bf5f9cc462349b90cb1e94657ac526dfc91b1
SHA256

586945aee0063973afe7646015011910c182ea0ab980b0f25a05e3174a7e55dd
SHA512

27b10b932e66cf0fa41b7e3b5d4b72d1720cb609ca85bec0c5082dadc3450c57bb4083e8f9682853bdbdd1a805577c6ee14a45116839230152525bcbd67efc4b
SSDEEP

1536:62uc/fBi+VO4vaq15npenlLBsLnVLdGUHyNwtN4/nLLVaBlEaaaaaadhXd45J:fuEBi+VOozenlLBsLnVUUHyNwtN4/nEP

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.4187cdcf0e6227e427ae486941fda1d0.exe
- Size
  
  91KB
- MD5
  
  4187cdcf0e6227e427ae486941fda1d0
- SHA1
  
  d82bf5f9cc462349b90cb1e94657ac526dfc91b1
- SHA256
  
  586945aee0063973afe7646015011910c182ea0ab980b0f25a05e3174a7e55dd
- SHA512
  
  27b10b932e66cf0fa41b7e3b5d4b72d1720cb609ca85bec0c5082dadc3450c57bb4083e8f9682853bdbdd1a805577c6ee14a45116839230152525bcbd67efc4b
- SSDEEP
  
  1536:62uc/fBi+VO4vaq15npenlLBsLnVLdGUHyNwtN4/nLLVaBlEaaaaaadhXd45J:fuEBi+VOozenlLBsLnVUUHyNwtN4/nEP
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2