1ae71d44b351768a15a75fbfc76b784d5ad41a0e1ec722c926aa13f00bb1d402 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

NEAS.a92147d2dbd2f2b36e606851979cb157.exe
Size

96KB
Sample

231028-wgaqaacg8s
MD5

a92147d2dbd2f2b36e606851979cb157
SHA1

67827b6934ebff221a23774b9ae7b88a54d92dff
SHA256

1ae71d44b351768a15a75fbfc76b784d5ad41a0e1ec722c926aa13f00bb1d402
SHA512

e9139994af76c4289fbb2ea540ea7e36ce399ee67d3db6a0ca8219010ff8f08f8b27653884f4d0d5e56aa64a475d98f57157d9f3da3437dc5bc1c376d98a2ae9
SSDEEP

1536:nf7JIvZC0VxvUxy+IGgAyPgFwZ82LG7RZObZUUWaegPYA:nDJIvZ+IVqFYGClUUWae

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.a92147d2dbd2f2b36e606851979cb157.exe
- Size
  
  96KB
- MD5
  
  a92147d2dbd2f2b36e606851979cb157
- SHA1
  
  67827b6934ebff221a23774b9ae7b88a54d92dff
- SHA256
  
  1ae71d44b351768a15a75fbfc76b784d5ad41a0e1ec722c926aa13f00bb1d402
- SHA512
  
  e9139994af76c4289fbb2ea540ea7e36ce399ee67d3db6a0ca8219010ff8f08f8b27653884f4d0d5e56aa64a475d98f57157d9f3da3437dc5bc1c376d98a2ae9
- SSDEEP
  
  1536:nf7JIvZC0VxvUxy+IGgAyPgFwZ82LG7RZObZUUWaegPYA:nDJIvZ+IVqFYGClUUWae
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2