ff55991446ee2fb375215d4727164d82b848facf4e7d84946926c94b141c30d9 | Triage

Sharing

General

Target

NEAS.9bd008dc79487477054739a8172ee730.exe
Size

91KB
Sample

231028-ypys7ahd31
MD5

9bd008dc79487477054739a8172ee730
SHA1

7876eeda25fec23f2eb4c983ec3e5b41969d5dfb
SHA256

ff55991446ee2fb375215d4727164d82b848facf4e7d84946926c94b141c30d9
SHA512

4a75741003e9844881df42c6e8840498ff3ff8851df246b4a2af553be7a0013c65306bd6bc088f026afe54ce86528f025c502ae9101e49d094d7710dbba04edc
SSDEEP

1536:6ZfuJ9RnwLEHi0XeneGNhAXpuvKkhwr4Uol5KusGBNTbt7Pu:6pSRnfiLbAXcvtlUuMhCPu

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.9bd008dc79487477054739a8172ee730.exe
- Size
  
  91KB
- MD5
  
  9bd008dc79487477054739a8172ee730
- SHA1
  
  7876eeda25fec23f2eb4c983ec3e5b41969d5dfb
- SHA256
  
  ff55991446ee2fb375215d4727164d82b848facf4e7d84946926c94b141c30d9
- SHA512
  
  4a75741003e9844881df42c6e8840498ff3ff8851df246b4a2af553be7a0013c65306bd6bc088f026afe54ce86528f025c502ae9101e49d094d7710dbba04edc
- SSDEEP
  
  1536:6ZfuJ9RnwLEHi0XeneGNhAXpuvKkhwr4Uol5KusGBNTbt7Pu:6pSRnfiLbAXcvtlUuMhCPu
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2