f4f9f4c2490b07f1d4409645c80f2c7a6988bac8454b29bb33a5c694daf73b66 | Triage

Sharing

General

Target

NEAS.64a6742c514176d9e72db778789ca7a0.exe
Size

75KB
Sample

231014-wjpbfsda68
MD5

64a6742c514176d9e72db778789ca7a0
SHA1

18acd877713a14ac27bcb769945901c8c71a722f
SHA256

f4f9f4c2490b07f1d4409645c80f2c7a6988bac8454b29bb33a5c694daf73b66
SHA512

4ce851f1f95aede14b5618dc247801d439380ff7f950ac8c6b4ea69de8055b796691d31670da9e4cf1cb928ee43b2138701ebc936cc9055f48490138b99b1254
SSDEEP

1536:nOwvYOb8dEcFlk9lpSG0q8zdnCr0DNvf8sn45uvjO53q52IrFH:zvvgWcolpnrAn45uvjg3qv

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.64a6742c514176d9e72db778789ca7a0.exe
- Size
  
  75KB
- MD5
  
  64a6742c514176d9e72db778789ca7a0
- SHA1
  
  18acd877713a14ac27bcb769945901c8c71a722f
- SHA256
  
  f4f9f4c2490b07f1d4409645c80f2c7a6988bac8454b29bb33a5c694daf73b66
- SHA512
  
  4ce851f1f95aede14b5618dc247801d439380ff7f950ac8c6b4ea69de8055b796691d31670da9e4cf1cb928ee43b2138701ebc936cc9055f48490138b99b1254
- SSDEEP
  
  1536:nOwvYOb8dEcFlk9lpSG0q8zdnCr0DNvf8sn45uvjO53q52IrFH:zvvgWcolpnrAn45uvjg3qv
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2