a42880589aae96efc33cee01e6ce9ed2e8e1a1f5d6e7be72de89c9d52cdf8aee | Triage

Sharing

General

Target

NEAS.ab86fd9e40b19b217e4370432b8923e0.exe
Size

89KB
Sample

231031-kwmgvafe43
MD5

ab86fd9e40b19b217e4370432b8923e0
SHA1

9c293f81744c006f63ac8d19c63c255ad8422ecc
SHA256

a42880589aae96efc33cee01e6ce9ed2e8e1a1f5d6e7be72de89c9d52cdf8aee
SHA512

ceebac3f0f6967ef80b7b13d92ec5199c731e14a63a699724d3ea4a34e9ee5b00210d93958ac1024d415d9b533b1d964b0ac3bdda332294fecdffaaf912f36fb
SSDEEP

1536:dbe7rh358tytnTAdnzbmsCIK282c8CPGCECa9bC7e3iaqWpOBMD:wH/8ABGnzbmhD28Qxnd9GMHqW/

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.ab86fd9e40b19b217e4370432b8923e0.exe
- Size
  
  89KB
- MD5
  
  ab86fd9e40b19b217e4370432b8923e0
- SHA1
  
  9c293f81744c006f63ac8d19c63c255ad8422ecc
- SHA256
  
  a42880589aae96efc33cee01e6ce9ed2e8e1a1f5d6e7be72de89c9d52cdf8aee
- SHA512
  
  ceebac3f0f6967ef80b7b13d92ec5199c731e14a63a699724d3ea4a34e9ee5b00210d93958ac1024d415d9b533b1d964b0ac3bdda332294fecdffaaf912f36fb
- SSDEEP
  
  1536:dbe7rh358tytnTAdnzbmsCIK282c8CPGCECa9bC7e3iaqWpOBMD:wH/8ABGnzbmhD28Qxnd9GMHqW/
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2