894cad3d47a3e6b65901854f860ddb8eb813e4c5fd77c8cb1dacaaf94938b754 | Triage

Sharing

General

Target

NEAS.92b79c3646429b8a6106a0621231c160.exe
Size

368KB
Sample

231016-w4yevsgc4x
MD5

92b79c3646429b8a6106a0621231c160
SHA1

101fe2f7584de7627f2222f8c30819a9538a75a5
SHA256

894cad3d47a3e6b65901854f860ddb8eb813e4c5fd77c8cb1dacaaf94938b754
SHA512

80c8d08fcd7cf7f308188e961e90692ad07e26bf225e4335b5613e4badd406910a262146e4de99b4a8b6b7aee13f48543c7a56ff8c7ef6fa121a7a14fb4dc917
SSDEEP

6144:IpYDagEYhE4f9FIUpOVw86CmOJfTo9FIUIhrcflDMxy9FIUpOVw86CmOJfTo9FI6:6YDqaAD6RrI1+lDMEAD6Rr2NWL

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.92b79c3646429b8a6106a0621231c160.exe
- Size
  
  368KB
- MD5
  
  92b79c3646429b8a6106a0621231c160
- SHA1
  
  101fe2f7584de7627f2222f8c30819a9538a75a5
- SHA256
  
  894cad3d47a3e6b65901854f860ddb8eb813e4c5fd77c8cb1dacaaf94938b754
- SHA512
  
  80c8d08fcd7cf7f308188e961e90692ad07e26bf225e4335b5613e4badd406910a262146e4de99b4a8b6b7aee13f48543c7a56ff8c7ef6fa121a7a14fb4dc917
- SSDEEP
  
  6144:IpYDagEYhE4f9FIUpOVw86CmOJfTo9FIUIhrcflDMxy9FIUpOVw86CmOJfTo9FI6:6YDqaAD6RrI1+lDMEAD6Rr2NWL
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2