b517ccbcdc90a531eec0bce9c29b9e2d6b33c127ebad0497169301b80d4eb662 | Triage

Sharing

General

Target

NEAS.345e91964c6dee61155ffe8a672a5970.exe
Size

80KB
Sample

231016-wwz9gsdf55
MD5

345e91964c6dee61155ffe8a672a5970
SHA1

22616b7fb7669cf650d76c0c5fe6b43d9e5ec881
SHA256

b517ccbcdc90a531eec0bce9c29b9e2d6b33c127ebad0497169301b80d4eb662
SHA512

4b89a8050a808505e6f3fe29d38ff18db91879f00ceae2b58e59a25340253190cea3ee719f05aa6f729050db526b57d57cbc82846a9dee2e8e11b52b66360183
SSDEEP

1536:EIjQuK+h4N6sk65K9UwEE+X0w5YMkhohBE8VGh:PjQuKyv2RwrcUAEQGh

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.345e91964c6dee61155ffe8a672a5970.exe
- Size
  
  80KB
- MD5
  
  345e91964c6dee61155ffe8a672a5970
- SHA1
  
  22616b7fb7669cf650d76c0c5fe6b43d9e5ec881
- SHA256
  
  b517ccbcdc90a531eec0bce9c29b9e2d6b33c127ebad0497169301b80d4eb662
- SHA512
  
  4b89a8050a808505e6f3fe29d38ff18db91879f00ceae2b58e59a25340253190cea3ee719f05aa6f729050db526b57d57cbc82846a9dee2e8e11b52b66360183
- SSDEEP
  
  1536:EIjQuK+h4N6sk65K9UwEE+X0w5YMkhohBE8VGh:PjQuKyv2RwrcUAEQGh
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2