8f9ba59d42335e2c30f8537266819932079c5ecd254d0ea0fd5ef0cf14dc242d | Triage

Sharing

General

Target

NEAS.d59f1625ce9c0fbec5a86662de0ab420.exe
Size

52KB
Sample

231101-atl37aga8w
MD5

d59f1625ce9c0fbec5a86662de0ab420
SHA1

bb035c6bdfe1987bd8118058bd8819205ec87e73
SHA256

8f9ba59d42335e2c30f8537266819932079c5ecd254d0ea0fd5ef0cf14dc242d
SHA512

099c112e000e780e07ab7ea427ab1bcee077eebb0d3737390bdc3a97a187a45ab162f07a6f8c84bf5a6038d65e2b0a69aab396b7aa2298e2f8220c4d80b5ccb8
SSDEEP

768:5BIri4XlLP9Vru4oJ8pE+trbcs1lp8jChayOE7Au0E7PkBK/1H5F/s6QMABvKWe:5BIWO5PbkJxKVMA9UQFQMAdKZ

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.d59f1625ce9c0fbec5a86662de0ab420.exe
- Size
  
  52KB
- MD5
  
  d59f1625ce9c0fbec5a86662de0ab420
- SHA1
  
  bb035c6bdfe1987bd8118058bd8819205ec87e73
- SHA256
  
  8f9ba59d42335e2c30f8537266819932079c5ecd254d0ea0fd5ef0cf14dc242d
- SHA512
  
  099c112e000e780e07ab7ea427ab1bcee077eebb0d3737390bdc3a97a187a45ab162f07a6f8c84bf5a6038d65e2b0a69aab396b7aa2298e2f8220c4d80b5ccb8
- SSDEEP
  
  768:5BIri4XlLP9Vru4oJ8pE+trbcs1lp8jChayOE7Au0E7PkBK/1H5F/s6QMABvKWe:5BIWO5PbkJxKVMA9UQFQMAdKZ
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2