f8d18e89742c5a29265138b38cd52cb14ce408c20d53f275e93da4dd34e7b954 | Triage

Sharing

General

Target

NEAS.43a36907ab84e1402f0f6f74125a3b17.exe
Size

55KB
Sample

231101-kcgr9ada7s
MD5

43a36907ab84e1402f0f6f74125a3b17
SHA1

003fb1c450a84868513462b68d7cc8b60a57ff36
SHA256

f8d18e89742c5a29265138b38cd52cb14ce408c20d53f275e93da4dd34e7b954
SHA512

27d97c4814b57ffa8fc97a55fd3c0f823c048e76480c831835cc1fc2eaa1adb179f7575a7d79304e28a2e76fa269cfa500796ffce6906f77139c925ec61456c2
SSDEEP

1536:2T5mqH7gepljlaO2MYudpdIBwUv8Ed/GZIQXymmmmh4KE5VRRsV/J1S/:2T5mUjlaO/YY41v8EdhaHRRsV/Js/

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.43a36907ab84e1402f0f6f74125a3b17.exe
- Size
  
  55KB
- MD5
  
  43a36907ab84e1402f0f6f74125a3b17
- SHA1
  
  003fb1c450a84868513462b68d7cc8b60a57ff36
- SHA256
  
  f8d18e89742c5a29265138b38cd52cb14ce408c20d53f275e93da4dd34e7b954
- SHA512
  
  27d97c4814b57ffa8fc97a55fd3c0f823c048e76480c831835cc1fc2eaa1adb179f7575a7d79304e28a2e76fa269cfa500796ffce6906f77139c925ec61456c2
- SSDEEP
  
  1536:2T5mqH7gepljlaO2MYudpdIBwUv8Ed/GZIQXymmmmh4KE5VRRsV/J1S/:2T5mUjlaO/YY41v8EdhaHRRsV/Js/
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2