dc490ae2ac0a979094552cd2478bca0740b7c84c12d82cfbaa38c6826ec4a921 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

NEAS.955e59f90c0e91042a7dae72a0e9e9e0.exe
Size

128KB
Sample

231016-w45tyagd5z
MD5

955e59f90c0e91042a7dae72a0e9e9e0
SHA1

8b2beaa55f382c4de8c6ec0554c4cceb0a618f11
SHA256

dc490ae2ac0a979094552cd2478bca0740b7c84c12d82cfbaa38c6826ec4a921
SHA512

9329472261e4af86511ed48da5314098c4e6313e9d731ae7d874244b87a77675e17c0f37e2d03ce3bb7356a6ee4d6274397bce5d1ef6a21d70bb4977491149b7
SSDEEP

3072:T6mSfjauPZJ3RlSHWvtFrNWtozsf4tQ6Qo1DHfHPEkI+kJb9bdXtM:BuRJqHWotwsf4GWH8kdkVO

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.955e59f90c0e91042a7dae72a0e9e9e0.exe
- Size
  
  128KB
- MD5
  
  955e59f90c0e91042a7dae72a0e9e9e0
- SHA1
  
  8b2beaa55f382c4de8c6ec0554c4cceb0a618f11
- SHA256
  
  dc490ae2ac0a979094552cd2478bca0740b7c84c12d82cfbaa38c6826ec4a921
- SHA512
  
  9329472261e4af86511ed48da5314098c4e6313e9d731ae7d874244b87a77675e17c0f37e2d03ce3bb7356a6ee4d6274397bce5d1ef6a21d70bb4977491149b7
- SSDEEP
  
  3072:T6mSfjauPZJ3RlSHWvtFrNWtozsf4tQ6Qo1DHfHPEkI+kJb9bdXtM:BuRJqHWotwsf4GWH8kdkVO
Score

8^/10

persistence
- Modifies AppInit DLL entries
  persistence
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2