7f87d731d8bd99f751e240ed039569086f29bf1e25371f37b3ad84c84ce30c41 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

NEAS.500cf5fd0a5bf155b6e017c8408dcb30.exe
Size

431KB
Sample

231016-wy5lzsdc2w
MD5

500cf5fd0a5bf155b6e017c8408dcb30
SHA1

9fc73a9f54ec661c1f643045f0dcda297a36cc5d
SHA256

7f87d731d8bd99f751e240ed039569086f29bf1e25371f37b3ad84c84ce30c41
SHA512

c6e2718686e57d0901ad26837ae5b861debefd41c129698d92831dca1fc90b7a09ffa565177f6e3d9260a58b4b1f82ab3463472e5ea0f902fa0cb1e2d19ded6b
SSDEEP

3072:smVW8iTX/3Rfl8Xq1+0cxxsWEL02fXcIp08Moe9DESZLK0uxicQf4yGI:tM7jJljxYTHYZM1vlncQfLl

Score

7^/10

persistence upx

Malware Config

Targets

- Target
  
  NEAS.500cf5fd0a5bf155b6e017c8408dcb30.exe
- Size
  
  431KB
- MD5
  
  500cf5fd0a5bf155b6e017c8408dcb30
- SHA1
  
  9fc73a9f54ec661c1f643045f0dcda297a36cc5d
- SHA256
  
  7f87d731d8bd99f751e240ed039569086f29bf1e25371f37b3ad84c84ce30c41
- SHA512
  
  c6e2718686e57d0901ad26837ae5b861debefd41c129698d92831dca1fc90b7a09ffa565177f6e3d9260a58b4b1f82ab3463472e5ea0f902fa0cb1e2d19ded6b
- SSDEEP
  
  3072:smVW8iTX/3Rfl8Xq1+0cxxsWEL02fXcIp08Moe9DESZLK0uxicQf4yGI:tM7jJljxYTHYZM1vlncQfLl
Score

7^/10

persistence upx
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2