24700cea32c3a2b45be42136d4d4cd9840b56f546d11372e4482c481e8b99b9b | Triage

Sharing

Copy URL Twitter E-mail

General

Target

NEAS.57f5ca4e26c0bf14f0850f65bb62fb10.exe
Size

80KB
Sample

231028-ymp39shd95
MD5

57f5ca4e26c0bf14f0850f65bb62fb10
SHA1

78c394355e2bb5dd8ab2c8bf1662b468cf6cde87
SHA256

24700cea32c3a2b45be42136d4d4cd9840b56f546d11372e4482c481e8b99b9b
SHA512

22aae92de3c805053b3a95c2ea77f648994a0f05980f64d7cb4b73a67fb9e6b5a8dd9799c53f43343c87918e6425c51c4b7628c6b23b09c80fb036b310a0bfe6
SSDEEP

1536:ua1/8eNGW43o3qmP74vX5YMkhohBE8VGh:ua1893GqmP7gpUAEQGh

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.57f5ca4e26c0bf14f0850f65bb62fb10.exe
- Size
  
  80KB
- MD5
  
  57f5ca4e26c0bf14f0850f65bb62fb10
- SHA1
  
  78c394355e2bb5dd8ab2c8bf1662b468cf6cde87
- SHA256
  
  24700cea32c3a2b45be42136d4d4cd9840b56f546d11372e4482c481e8b99b9b
- SHA512
  
  22aae92de3c805053b3a95c2ea77f648994a0f05980f64d7cb4b73a67fb9e6b5a8dd9799c53f43343c87918e6425c51c4b7628c6b23b09c80fb036b310a0bfe6
- SSDEEP
  
  1536:ua1/8eNGW43o3qmP74vX5YMkhohBE8VGh:ua1893GqmP7gpUAEQGh
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2