991ea4bfe3d0455f97f2d256b57bb0b2796f8e55caaf3f0cb1b40442a1cf7884 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

NEAS.188b5af9a0e06fe0319af51e367e71c0.exe
Size

212KB
Sample

231022-vr5sqsde44
MD5

188b5af9a0e06fe0319af51e367e71c0
SHA1

a96d212662a25155358fe1a93af4e1da129d5418
SHA256

991ea4bfe3d0455f97f2d256b57bb0b2796f8e55caaf3f0cb1b40442a1cf7884
SHA512

d8b236f741d1ba9c375e3019e727f593b7efc88016b937397eb3c1861b8ad4c25763e410308e3469b02f32b68e70871870403ea87192df1296bcf86eb79291cc
SSDEEP

6144:dJ4GsMQN0SjAXisy8DYdaph0vJgH6NfNHfomHRD/Gt:dKGusiz8DYd+myO15zm

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.188b5af9a0e06fe0319af51e367e71c0.exe
- Size
  
  212KB
- MD5
  
  188b5af9a0e06fe0319af51e367e71c0
- SHA1
  
  a96d212662a25155358fe1a93af4e1da129d5418
- SHA256
  
  991ea4bfe3d0455f97f2d256b57bb0b2796f8e55caaf3f0cb1b40442a1cf7884
- SHA512
  
  d8b236f741d1ba9c375e3019e727f593b7efc88016b937397eb3c1861b8ad4c25763e410308e3469b02f32b68e70871870403ea87192df1296bcf86eb79291cc
- SSDEEP
  
  6144:dJ4GsMQN0SjAXisy8DYdaph0vJgH6NfNHfomHRD/Gt:dKGusiz8DYd+myO15zm
Score

8^/10

persistence
- Modifies AppInit DLL entries
  persistence
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2