3619e9c499b3e195c24d378eea1d85a736a393486255364cf003d17c23accf74 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

NEAS.45887f4fd2cef2f9574d34dd91a14b80.exe
Size

120KB
Sample

231016-wx6snaed55
MD5

45887f4fd2cef2f9574d34dd91a14b80
SHA1

9936464f655be083bb7fa6704d96ac10be494e12
SHA256

3619e9c499b3e195c24d378eea1d85a736a393486255364cf003d17c23accf74
SHA512

7a0b792d92185569658f6cc4d19bac315ac1ba7c9122234852094af77aa51cd452724ab2922668105639e5c6c7c757ae68d8d269f55ae2e4e7e781346b90b8e1
SSDEEP

3072:fmBiFH68j9mKxeZ203H/6TC+qF1SsB1bw4AVRrd9:f5OKEZ9C81NBy9

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.45887f4fd2cef2f9574d34dd91a14b80.exe
- Size
  
  120KB
- MD5
  
  45887f4fd2cef2f9574d34dd91a14b80
- SHA1
  
  9936464f655be083bb7fa6704d96ac10be494e12
- SHA256
  
  3619e9c499b3e195c24d378eea1d85a736a393486255364cf003d17c23accf74
- SHA512
  
  7a0b792d92185569658f6cc4d19bac315ac1ba7c9122234852094af77aa51cd452724ab2922668105639e5c6c7c757ae68d8d269f55ae2e4e7e781346b90b8e1
- SSDEEP
  
  3072:fmBiFH68j9mKxeZ203H/6TC+qF1SsB1bw4AVRrd9:f5OKEZ9C81NBy9
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2