95f0465adf773e96233563ad4d3f4cb8ab4182199f4021a829a93db5b69a8a71 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

NEAS.52d57e0bfddfade82d74b52101db3df0.exe
Size

380KB
Sample

231031-ktpjesea93
MD5

52d57e0bfddfade82d74b52101db3df0
SHA1

12e923330739aa50e956e934c27f193f685cdd37
SHA256

95f0465adf773e96233563ad4d3f4cb8ab4182199f4021a829a93db5b69a8a71
SHA512

87379f92e7bd2906bfd1ccd9ff7721ef3b1e018caee05f33a6f9812fba4c9c2716b64302d2a156c7f99efa5c3c61d4dea336a3c59e02b0a5556542cfab7745ca
SSDEEP

3072:mEGh0oylPOiDOe2MUVg3bHrH/HqOYGb+4QnZZIne+rcC4F0fJGRIS8Rfd7eQEcGw:mEGQl7Oe2MUVg3v2IneKcAEcARy

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.52d57e0bfddfade82d74b52101db3df0.exe
- Size
  
  380KB
- MD5
  
  52d57e0bfddfade82d74b52101db3df0
- SHA1
  
  12e923330739aa50e956e934c27f193f685cdd37
- SHA256
  
  95f0465adf773e96233563ad4d3f4cb8ab4182199f4021a829a93db5b69a8a71
- SHA512
  
  87379f92e7bd2906bfd1ccd9ff7721ef3b1e018caee05f33a6f9812fba4c9c2716b64302d2a156c7f99efa5c3c61d4dea336a3c59e02b0a5556542cfab7745ca
- SSDEEP
  
  3072:mEGh0oylPOiDOe2MUVg3bHrH/HqOYGb+4QnZZIne+rcC4F0fJGRIS8Rfd7eQEcGw:mEGQl7Oe2MUVg3v2IneKcAEcARy
Score

8^/10

persistence
- Modifies Installed Components in the registry
  persistence
- Deletes itself
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2