2f78b7610e7991e354a41dfa430efa97f529df88685efd3a5845a5ceba717552 | Triage

Sharing

General

Target

NEAS.b133ae5dbdbbf8d9a6ab2239d2297b40.exe
Size

268KB
Sample

231014-xttvcsgf94
MD5

b133ae5dbdbbf8d9a6ab2239d2297b40
SHA1

d276ff75fa1fef7770400dee357891730b75711e
SHA256

2f78b7610e7991e354a41dfa430efa97f529df88685efd3a5845a5ceba717552
SHA512

dd4d00798f470b9aa2b879726284bb6c07d76ec9694a01bf1f3c59fdb5821aa237f8059eaf49cc98affe0b4dacd361aa5b0913e3b3933aeec8b04ad8022f62fe
SSDEEP

6144:fST2k0YujF59B+SNiT1SRws339pnPJ7Imc2Tg:OFxujX9B+lAb9ImZTg

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.b133ae5dbdbbf8d9a6ab2239d2297b40.exe
- Size
  
  268KB
- MD5
  
  b133ae5dbdbbf8d9a6ab2239d2297b40
- SHA1
  
  d276ff75fa1fef7770400dee357891730b75711e
- SHA256
  
  2f78b7610e7991e354a41dfa430efa97f529df88685efd3a5845a5ceba717552
- SHA512
  
  dd4d00798f470b9aa2b879726284bb6c07d76ec9694a01bf1f3c59fdb5821aa237f8059eaf49cc98affe0b4dacd361aa5b0913e3b3933aeec8b04ad8022f62fe
- SSDEEP
  
  6144:fST2k0YujF59B+SNiT1SRws339pnPJ7Imc2Tg:OFxujX9B+lAb9ImZTg
Score

8^/10

persistence
- Modifies AppInit DLL entries
  persistence
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2