97cd17328636e4f1f9a2c3c2460ac57060debc5ea7b24c6409b91f6aba5e8a82 | Triage

Sharing

General

Target

NEAS.d583b052007e3f15012262f69973fa90.exe
Size

83KB
Sample

231014-xyew1aah66
MD5

d583b052007e3f15012262f69973fa90
SHA1

319d1248539d96a7d0f374455fea84a8798c136e
SHA256

97cd17328636e4f1f9a2c3c2460ac57060debc5ea7b24c6409b91f6aba5e8a82
SHA512

ff1d24bfe21833eb98c4a16f4e0f3281102665a5c9d0f188bc5010513d92dfae6f39e550948b82d2414d2fb353911f821eda97527e398330b93513cab6266750
SSDEEP

1536:Q4QQ6NSyM61l19piO+LV8YEoI/EU9RUe4mLzm9j3CwMWDR3Spubv1DbfcS5z5szA:Q4X6NSyfnpijeYEoIcq40Wj3CwMeCpuh

Score

7^/10

persistence upx

Malware Config

Targets

- Target
  
  NEAS.d583b052007e3f15012262f69973fa90.exe
- Size
  
  83KB
- MD5
  
  d583b052007e3f15012262f69973fa90
- SHA1
  
  319d1248539d96a7d0f374455fea84a8798c136e
- SHA256
  
  97cd17328636e4f1f9a2c3c2460ac57060debc5ea7b24c6409b91f6aba5e8a82
- SHA512
  
  ff1d24bfe21833eb98c4a16f4e0f3281102665a5c9d0f188bc5010513d92dfae6f39e550948b82d2414d2fb353911f821eda97527e398330b93513cab6266750
- SSDEEP
  
  1536:Q4QQ6NSyM61l19piO+LV8YEoI/EU9RUe4mLzm9j3CwMWDR3Spubv1DbfcS5z5szA:Q4X6NSyfnpijeYEoIcq40Wj3CwMeCpuh
Score

7^/10

persistence upx
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2