6f7ec8949d5e6e49e6e9f298c84fb72e94de64bca85324299f4fc377df3e6b9c | Triage

Sharing

General

Target

NEAS.7b75d3d54542e62e33ef7c9c8352c1c0.exe
Size

45KB
Sample

231014-wmkgnseb45
MD5

7b75d3d54542e62e33ef7c9c8352c1c0
SHA1

0a87252e91713dcfdf92df0c9a8afd93b570f572
SHA256

6f7ec8949d5e6e49e6e9f298c84fb72e94de64bca85324299f4fc377df3e6b9c
SHA512

969dd86f2f3931417fd2b1ff35f744d3d8af2074af22f0d175bebc932f3c3b811b95e86483c2fb099db0835b571f9605d1f7cf99a42fd39d4bb12195a66a4ab3
SSDEEP

768:TFDAbVvm7qy8rCzW88kJGh8EjY3FYoAmD9erkfWlgRnry5Y/1H5i:piv4YezW88kJGhD031dWgFry5eU

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.7b75d3d54542e62e33ef7c9c8352c1c0.exe
- Size
  
  45KB
- MD5
  
  7b75d3d54542e62e33ef7c9c8352c1c0
- SHA1
  
  0a87252e91713dcfdf92df0c9a8afd93b570f572
- SHA256
  
  6f7ec8949d5e6e49e6e9f298c84fb72e94de64bca85324299f4fc377df3e6b9c
- SHA512
  
  969dd86f2f3931417fd2b1ff35f744d3d8af2074af22f0d175bebc932f3c3b811b95e86483c2fb099db0835b571f9605d1f7cf99a42fd39d4bb12195a66a4ab3
- SSDEEP
  
  768:TFDAbVvm7qy8rCzW88kJGh8EjY3FYoAmD9erkfWlgRnry5Y/1H5i:piv4YezW88kJGhD031dWgFry5eU
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2