946b94c1dc33626f062ece6ed7bde8f9b97bb373e60faad0397f6420ebccebb9 | Triage

Sharing

General

Target

NEAS.d70e080499b71d0df8e9289ac5f06c69.exe
Size

117KB
Sample

231028-wgj9qada21
MD5

d70e080499b71d0df8e9289ac5f06c69
SHA1

6eb59121fc7812326ff905efa6fd162ac19a2d22
SHA256

946b94c1dc33626f062ece6ed7bde8f9b97bb373e60faad0397f6420ebccebb9
SHA512

81d1fa3b330ef1963d5eeed1e09bd0f41bb7652fa7b08cb49420c01297d777619efc83488897ec28e8a4a8124c48932dcb3539ad443f9ecd66273ed8320b0b93
SSDEEP

1536:nFjdNDWZ6KvCp/osl2+EwerMACWsg1WmyjT5FFfUN1Avhw6JCM:npbWMKqp/oMihw5jT5FFfUrQlM

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.d70e080499b71d0df8e9289ac5f06c69.exe
- Size
  
  117KB
- MD5
  
  d70e080499b71d0df8e9289ac5f06c69
- SHA1
  
  6eb59121fc7812326ff905efa6fd162ac19a2d22
- SHA256
  
  946b94c1dc33626f062ece6ed7bde8f9b97bb373e60faad0397f6420ebccebb9
- SHA512
  
  81d1fa3b330ef1963d5eeed1e09bd0f41bb7652fa7b08cb49420c01297d777619efc83488897ec28e8a4a8124c48932dcb3539ad443f9ecd66273ed8320b0b93
- SSDEEP
  
  1536:nFjdNDWZ6KvCp/osl2+EwerMACWsg1WmyjT5FFfUN1Avhw6JCM:npbWMKqp/oMihw5jT5FFfUrQlM
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2