69685803d74f06a332b55c00e72ff984844872eadc56a76cb6fbbd6f25c81a58 | Triage

Sharing

General

Target

NEAS.bb77e4e735732a20f56cbbbd2ab67afb.exe
Size

163KB
Sample

231028-wgcvmsee34
MD5

bb77e4e735732a20f56cbbbd2ab67afb
SHA1

4207ea5c2a8dcd53c08505e88e3742dd5e3b6f62
SHA256

69685803d74f06a332b55c00e72ff984844872eadc56a76cb6fbbd6f25c81a58
SHA512

35ea85c42eda4327108bee9e1ff3384818553e04f8246ecc95687322102590ce03ed7650e2fe910051fc191dfb9224b21f5d522566e89ae80a6f3ce53ca09bfe
SSDEEP

1536:d5QaDONbUyPrpSDu8Uv/UMPgfD5SylQtfeX90AtGRhKW+jujAEjh8DTL9GIvg/Sn:TQa4bvSw3UPxYgnWAUjWDUIwLyc4F

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.bb77e4e735732a20f56cbbbd2ab67afb.exe
- Size
  
  163KB
- MD5
  
  bb77e4e735732a20f56cbbbd2ab67afb
- SHA1
  
  4207ea5c2a8dcd53c08505e88e3742dd5e3b6f62
- SHA256
  
  69685803d74f06a332b55c00e72ff984844872eadc56a76cb6fbbd6f25c81a58
- SHA512
  
  35ea85c42eda4327108bee9e1ff3384818553e04f8246ecc95687322102590ce03ed7650e2fe910051fc191dfb9224b21f5d522566e89ae80a6f3ce53ca09bfe
- SSDEEP
  
  1536:d5QaDONbUyPrpSDu8Uv/UMPgfD5SylQtfeX90AtGRhKW+jujAEjh8DTL9GIvg/Sn:TQa4bvSw3UPxYgnWAUjWDUIwLyc4F
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2