3226b815eda7e78d5d1c6f99155e0c1f5b98ff121c6ca9b504891563d9916dac | Triage

Sharing

General

Target

NEAS.78f163dfd23e396363f242cc8d993930.exe
Size

80KB
Sample

231014-wk7jesea43
MD5

78f163dfd23e396363f242cc8d993930
SHA1

8e3361d1ca4e677ca42e7358720c62f84392eeac
SHA256

3226b815eda7e78d5d1c6f99155e0c1f5b98ff121c6ca9b504891563d9916dac
SHA512

45d435903855b831450bc39d9e78327328829c743d98d053d4d719cc697dc2f0e1bd6a58d245f6b046d5b27906fcee3e95fb796c15f8e77d165c41750c588cef
SSDEEP

1536:XZquQfwKJh+b3jKUbAUARSxFUb000000w40OODKvzDfWqdMVrlEFtyb7IYOOqw4z:XeVh+b31bA2xFUb000000w40dDKvzTWu

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.78f163dfd23e396363f242cc8d993930.exe
- Size
  
  80KB
- MD5
  
  78f163dfd23e396363f242cc8d993930
- SHA1
  
  8e3361d1ca4e677ca42e7358720c62f84392eeac
- SHA256
  
  3226b815eda7e78d5d1c6f99155e0c1f5b98ff121c6ca9b504891563d9916dac
- SHA512
  
  45d435903855b831450bc39d9e78327328829c743d98d053d4d719cc697dc2f0e1bd6a58d245f6b046d5b27906fcee3e95fb796c15f8e77d165c41750c588cef
- SSDEEP
  
  1536:XZquQfwKJh+b3jKUbAUARSxFUb000000w40OODKvzDfWqdMVrlEFtyb7IYOOqw4z:XeVh+b31bA2xFUb000000w40dDKvzTWu
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2