e4d431d3a0a1afdee16934d91f93534724d0262a8b48a05bfe0145caabb555c9 | Triage

Sharing

General

Target

NEAS.9b7ce57c0c764335eeca628c9632a1d7.exe
Size

144KB
Sample

231031-kkg3zscb85
MD5

9b7ce57c0c764335eeca628c9632a1d7
SHA1

fa600206b1cf65e1eaf612044d976e46182c3d94
SHA256

e4d431d3a0a1afdee16934d91f93534724d0262a8b48a05bfe0145caabb555c9
SHA512

20ef9fa485486e3b54940c41d4e9fbad684ac2379a5f69f42ccd52ca1284e76015067604f0ff975f773e66be8b22c02cdc4c49342368ec1bf250ccd8cec1609c
SSDEEP

3072:JZUw9J8bmlEJVLzdH13+EE+RaZ6r+GDZnBcVU:JS0Hl4VLzd5IF6rfBBcVU

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.9b7ce57c0c764335eeca628c9632a1d7.exe
- Size
  
  144KB
- MD5
  
  9b7ce57c0c764335eeca628c9632a1d7
- SHA1
  
  fa600206b1cf65e1eaf612044d976e46182c3d94
- SHA256
  
  e4d431d3a0a1afdee16934d91f93534724d0262a8b48a05bfe0145caabb555c9
- SHA512
  
  20ef9fa485486e3b54940c41d4e9fbad684ac2379a5f69f42ccd52ca1284e76015067604f0ff975f773e66be8b22c02cdc4c49342368ec1bf250ccd8cec1609c
- SSDEEP
  
  3072:JZUw9J8bmlEJVLzdH13+EE+RaZ6r+GDZnBcVU:JS0Hl4VLzd5IF6rfBBcVU
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2