9a403fbce244efb3e56536b428e27c9c9af9ff7e537d54614dcc2e664219551f | Triage

Sharing

General

Target

NEAS.a36c5e6464084192f2e1892438cf95f0.exe
Size

91KB
Sample

231014-wq1ytsfg34
MD5

a36c5e6464084192f2e1892438cf95f0
SHA1

59025c3f602d14a16a28052a97e49a18d194aa44
SHA256

9a403fbce244efb3e56536b428e27c9c9af9ff7e537d54614dcc2e664219551f
SHA512

f345600ad594ae79e10fde52476245e63b8c11adc2df01fb97f46de2f95db56fc33917d9072e06d43af5591a6da8999a0ed085f094a2b8248efd65e4efd72340
SSDEEP

1536:5kNSiLfXpTde6fjMwPI76Jqj+olhD9WhiD2dNzJ6G3YU+gxd+Aw:5RiDXq6rw76erD9WhiSvzJ63/Aw

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.a36c5e6464084192f2e1892438cf95f0.exe
- Size
  
  91KB
- MD5
  
  a36c5e6464084192f2e1892438cf95f0
- SHA1
  
  59025c3f602d14a16a28052a97e49a18d194aa44
- SHA256
  
  9a403fbce244efb3e56536b428e27c9c9af9ff7e537d54614dcc2e664219551f
- SHA512
  
  f345600ad594ae79e10fde52476245e63b8c11adc2df01fb97f46de2f95db56fc33917d9072e06d43af5591a6da8999a0ed085f094a2b8248efd65e4efd72340
- SSDEEP
  
  1536:5kNSiLfXpTde6fjMwPI76Jqj+olhD9WhiD2dNzJ6G3YU+gxd+Aw:5RiDXq6rw76erD9WhiSvzJ63/Aw
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2