0dee09414e3922f992a415487ecfaf5718f0e59bffa9ea7fa1aeec66550fc4b6 | Triage

Sharing

General

Target

NEAS.b6b21933aa90c0b95472b41de5830db0.exe
Size

265KB
Sample

231031-kknkrscc73
MD5

b6b21933aa90c0b95472b41de5830db0
SHA1

3edb591753683ccf53cb814e4aaa650afd651ab9
SHA256

0dee09414e3922f992a415487ecfaf5718f0e59bffa9ea7fa1aeec66550fc4b6
SHA512

7dd4753a8cbd00653d029d6037e618b55f5251cc070817c5e87ca9b2ec62731054d731e9094eef67b5835d2cb09189e6dcc598eeb67098677a8c4cef47bf08c7
SSDEEP

6144:sT3x7HeFMQulF84U6moEx6pVYgTS/QiFs2QidpqDcSzjb:3MxXU7ufiq1zj

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.b6b21933aa90c0b95472b41de5830db0.exe
- Size
  
  265KB
- MD5
  
  b6b21933aa90c0b95472b41de5830db0
- SHA1
  
  3edb591753683ccf53cb814e4aaa650afd651ab9
- SHA256
  
  0dee09414e3922f992a415487ecfaf5718f0e59bffa9ea7fa1aeec66550fc4b6
- SHA512
  
  7dd4753a8cbd00653d029d6037e618b55f5251cc070817c5e87ca9b2ec62731054d731e9094eef67b5835d2cb09189e6dcc598eeb67098677a8c4cef47bf08c7
- SSDEEP
  
  6144:sT3x7HeFMQulF84U6moEx6pVYgTS/QiFs2QidpqDcSzjb:3MxXU7ufiq1zj
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2