d5c1a613cd7f019f7dd2d6f45e22ad11192632cccd85ce9a40a69f4f38785fe8 | Triage

Sharing

General

Target

NEAS.048fae6d27da435263058b87e21f313f.exe
Size

301KB
Sample

231028-wfsvgaec29
MD5

048fae6d27da435263058b87e21f313f
SHA1

4d5db44d8b32eb50c0ffc3ad1e1118f5998388bc
SHA256

d5c1a613cd7f019f7dd2d6f45e22ad11192632cccd85ce9a40a69f4f38785fe8
SHA512

8237378b0b9e4fdb16f392b73c2995e984e5b9e7077473ca1ad0ad29c3e95b60d8eeb19bb9276509a4b7f32b382f9772f7d44a8abc276ecaabe976391e142324
SSDEEP

6144:whikOOVJmZfm+kte+MZmYm+DakBpvXBwNBezP:pQe+Y/+TezP

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.048fae6d27da435263058b87e21f313f.exe
- Size
  
  301KB
- MD5
  
  048fae6d27da435263058b87e21f313f
- SHA1
  
  4d5db44d8b32eb50c0ffc3ad1e1118f5998388bc
- SHA256
  
  d5c1a613cd7f019f7dd2d6f45e22ad11192632cccd85ce9a40a69f4f38785fe8
- SHA512
  
  8237378b0b9e4fdb16f392b73c2995e984e5b9e7077473ca1ad0ad29c3e95b60d8eeb19bb9276509a4b7f32b382f9772f7d44a8abc276ecaabe976391e142324
- SSDEEP
  
  6144:whikOOVJmZfm+kte+MZmYm+DakBpvXBwNBezP:pQe+Y/+TezP
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2