267dbb7294651cf2e85916521f58f9b5430a2277a0cc063b93a6235e67bcb9c7 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

NEAS.07fe8f38fe7641a589a210d56773e7a0.exe
Size

55KB
Sample

231021-z2k9asaf5v
MD5

07fe8f38fe7641a589a210d56773e7a0
SHA1

b30d0d9f00b252dc88380e1cbb445140b7d88d14
SHA256

267dbb7294651cf2e85916521f58f9b5430a2277a0cc063b93a6235e67bcb9c7
SHA512

b8bf57afa8509e5f323d8825768cd62b6e58e59f5d8793ca3dcf590a47e1bc01de6cd0fd0ef6862c2c649381a6ead9156caff4b72ea216db07c9cf990d4b89c8
SSDEEP

1536:JW7uO0AnyttkiKSAeieb4EnUIXWClvll:QBJnyttweb4EnZXWyvll

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.07fe8f38fe7641a589a210d56773e7a0.exe
- Size
  
  55KB
- MD5
  
  07fe8f38fe7641a589a210d56773e7a0
- SHA1
  
  b30d0d9f00b252dc88380e1cbb445140b7d88d14
- SHA256
  
  267dbb7294651cf2e85916521f58f9b5430a2277a0cc063b93a6235e67bcb9c7
- SHA512
  
  b8bf57afa8509e5f323d8825768cd62b6e58e59f5d8793ca3dcf590a47e1bc01de6cd0fd0ef6862c2c649381a6ead9156caff4b72ea216db07c9cf990d4b89c8
- SSDEEP
  
  1536:JW7uO0AnyttkiKSAeieb4EnUIXWClvll:QBJnyttweb4EnZXWyvll
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2