e6505d058831df2aa79868679d99d00d8298072e549c76c530d93a1317a0a75e | Triage

Sharing

Copy URL Twitter E-mail

General

Target

NEAS.632711d5b03614d8df5982d12eca6e20.exe
Size

1.4MB
Sample

231022-vwqvdadh3z
MD5

632711d5b03614d8df5982d12eca6e20
SHA1

a125988a8d1b01e4a0383ea15a889d5ee5a21aa6
SHA256

e6505d058831df2aa79868679d99d00d8298072e549c76c530d93a1317a0a75e
SHA512

e3ea1a7e0d19999d6d5ca821a492ba33a5cbd56a96030b4056c4663fefdc177fd7a765dc34f1871cc7f2e1f0d81d9ae12373a2cd174c90c987b9c4299289832f
SSDEEP

24576:Xwc6AEc6etxJc6AEc6Vcc6AEc6etxJc6AEc6:Xw9N9etxJ9N9a9N9etxJ9N9

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.632711d5b03614d8df5982d12eca6e20.exe
- Size
  
  1.4MB
- MD5
  
  632711d5b03614d8df5982d12eca6e20
- SHA1
  
  a125988a8d1b01e4a0383ea15a889d5ee5a21aa6
- SHA256
  
  e6505d058831df2aa79868679d99d00d8298072e549c76c530d93a1317a0a75e
- SHA512
  
  e3ea1a7e0d19999d6d5ca821a492ba33a5cbd56a96030b4056c4663fefdc177fd7a765dc34f1871cc7f2e1f0d81d9ae12373a2cd174c90c987b9c4299289832f
- SSDEEP
  
  24576:Xwc6AEc6etxJc6AEc6Vcc6AEc6etxJc6AEc6:Xw9N9etxJ9N9a9N9etxJ9N9
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2