2b516d59ea0af3d6114943381bbe4663c4e7a5f9cda3937716ff572b10ac1db6 | Triage

Sharing

General

Target

NEAS.87c442947e6a0cf8823a19cdce3ef170.exe
Size

91KB
Sample

231016-w33yysff9y
MD5

87c442947e6a0cf8823a19cdce3ef170
SHA1

9af60aa601c1d8ee1662eccf5d8f6d4ae8a55e8e
SHA256

2b516d59ea0af3d6114943381bbe4663c4e7a5f9cda3937716ff572b10ac1db6
SHA512

f3061981471f890c284cab1c9daa747394fa6389da5eb09eed998f81dee95e9642405f068ea8a228b7d09a9ac20912c4d06c142a5abb01787557747a652711c1
SSDEEP

1536:e8iWd8/2wCFVhUaf8BiAeq+tWoCEwTdZy3VeXHRos7BVHv:e878/cjhUaf8BiAf+zrkdmY3RZVxv

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.87c442947e6a0cf8823a19cdce3ef170.exe
- Size
  
  91KB
- MD5
  
  87c442947e6a0cf8823a19cdce3ef170
- SHA1
  
  9af60aa601c1d8ee1662eccf5d8f6d4ae8a55e8e
- SHA256
  
  2b516d59ea0af3d6114943381bbe4663c4e7a5f9cda3937716ff572b10ac1db6
- SHA512
  
  f3061981471f890c284cab1c9daa747394fa6389da5eb09eed998f81dee95e9642405f068ea8a228b7d09a9ac20912c4d06c142a5abb01787557747a652711c1
- SSDEEP
  
  1536:e8iWd8/2wCFVhUaf8BiAeq+tWoCEwTdZy3VeXHRos7BVHv:e878/cjhUaf8BiAf+zrkdmY3RZVxv
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2