8ee49f2406b9b8d8ed52ca2a7e7e507d3c05964dad5ffbd584fa099e93df0644 | Triage

Sharing

General

Target

NEAS.3e52508105f0b847a617d7a67eaa0f00.exe
Size

229KB
Sample

231016-wxq27scd4w
MD5

3e52508105f0b847a617d7a67eaa0f00
SHA1

b2ab127847dc7b0561f52aed412b13760603ee95
SHA256

8ee49f2406b9b8d8ed52ca2a7e7e507d3c05964dad5ffbd584fa099e93df0644
SHA512

d0870abc1e00213cec0cffb3fb1d07bc987b1dcf9c5a4706925794f1c108a30d599b3f2a4e92a63b9a42d90049ae3b0cb3b5e07e687a593638e59497738d63ce
SSDEEP

6144:g5yJ3SBcZm69FR6jG1n6xJmPMbjjfxKml2E:ZiBgFR6tjTsmsE

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.3e52508105f0b847a617d7a67eaa0f00.exe
- Size
  
  229KB
- MD5
  
  3e52508105f0b847a617d7a67eaa0f00
- SHA1
  
  b2ab127847dc7b0561f52aed412b13760603ee95
- SHA256
  
  8ee49f2406b9b8d8ed52ca2a7e7e507d3c05964dad5ffbd584fa099e93df0644
- SHA512
  
  d0870abc1e00213cec0cffb3fb1d07bc987b1dcf9c5a4706925794f1c108a30d599b3f2a4e92a63b9a42d90049ae3b0cb3b5e07e687a593638e59497738d63ce
- SSDEEP
  
  6144:g5yJ3SBcZm69FR6jG1n6xJmPMbjjfxKml2E:ZiBgFR6tjTsmsE
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2