e1d1c403c99722df13b9b90591b3640e6be1581460a9bdde89008738eaa1c573 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

NEAS.914d5d4ec0583fde0b3bb341ad06ee30.exe
Size

52KB
Sample

231016-w4s55shg64
MD5

914d5d4ec0583fde0b3bb341ad06ee30
SHA1

1084177a1da73ba430b86a08bbfe7a2d3546de9a
SHA256

e1d1c403c99722df13b9b90591b3640e6be1581460a9bdde89008738eaa1c573
SHA512

0833d33d4f0d34b32686cf6cf17c1064f08ef3328fda29ed66b68483b607ab28f240183f3facaa820d559b7e8eeebb832542013420982850b8dea04bbce0a2a4
SSDEEP

768:Zo/pmE8dEKDojL2CqLlB4bnnmAlKyBOFJXPGtVNm5lli/1H5F/skMABvKWe:ZK8dEKDFzYbnXlKy+XPGMotMAdKZ

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.914d5d4ec0583fde0b3bb341ad06ee30.exe
- Size
  
  52KB
- MD5
  
  914d5d4ec0583fde0b3bb341ad06ee30
- SHA1
  
  1084177a1da73ba430b86a08bbfe7a2d3546de9a
- SHA256
  
  e1d1c403c99722df13b9b90591b3640e6be1581460a9bdde89008738eaa1c573
- SHA512
  
  0833d33d4f0d34b32686cf6cf17c1064f08ef3328fda29ed66b68483b607ab28f240183f3facaa820d559b7e8eeebb832542013420982850b8dea04bbce0a2a4
- SSDEEP
  
  768:Zo/pmE8dEKDojL2CqLlB4bnnmAlKyBOFJXPGtVNm5lli/1H5F/skMABvKWe:ZK8dEKDFzYbnXlKy+XPGMotMAdKZ
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2