298444dd5bfc5b6133eade6e6acda38a526370aa6714a7d2a0b8598dd66e1f0a | Triage

Sharing

General

Target

NEAS.d0a5eaa3d4b29c118aa3e79a9f101030.exe
Size

465KB
Sample

231028-yz9y7sbc31
MD5

d0a5eaa3d4b29c118aa3e79a9f101030
SHA1

1b1e90ff8e6a2e9457f6db7c44895d39f2528975
SHA256

298444dd5bfc5b6133eade6e6acda38a526370aa6714a7d2a0b8598dd66e1f0a
SHA512

d4778863ff749b6e7869becceb112c1562595d4323ba2c825788581cb785206de454597e7665d4e8f490580e5c5f727076556ecbffe95276d4745cdff02233ad
SSDEEP

6144:9dz3Au3njPX9ZAkvntd4ljd3rKzwN8Jlljd3njPX9ZAk3fs:9drjP9ZtVkjpKXjtjP9Zt0

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.d0a5eaa3d4b29c118aa3e79a9f101030.exe
- Size
  
  465KB
- MD5
  
  d0a5eaa3d4b29c118aa3e79a9f101030
- SHA1
  
  1b1e90ff8e6a2e9457f6db7c44895d39f2528975
- SHA256
  
  298444dd5bfc5b6133eade6e6acda38a526370aa6714a7d2a0b8598dd66e1f0a
- SHA512
  
  d4778863ff749b6e7869becceb112c1562595d4323ba2c825788581cb785206de454597e7665d4e8f490580e5c5f727076556ecbffe95276d4745cdff02233ad
- SSDEEP
  
  6144:9dz3Au3njPX9ZAkvntd4ljd3rKzwN8Jlljd3njPX9ZAk3fs:9drjP9ZtVkjpKXjtjP9Zt0
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2