1441d36fb28be1b4e964e69fe8deb58f2920fa49635a99e614320bf8f0693634 | Triage

Sharing

General

Target

NEAS.e562751a0c7bf25c1f817bfa3ab758be.exe
Size

112KB
Sample

231101-kdmd5afg24
MD5

e562751a0c7bf25c1f817bfa3ab758be
SHA1

0d4f8e8b1650afd9efea5d9754abf3a9b3d54321
SHA256

1441d36fb28be1b4e964e69fe8deb58f2920fa49635a99e614320bf8f0693634
SHA512

1aaa0f6c15087e144b6db3f60cecde4508146e70d6afb6e877943ea079743a102d590e6bd64316fc6274d3fca36c53ac2f12e1b1e17ef731f38b271eda67935f
SSDEEP

3072:LKu9HWKt3DdDd7I7jPgKJpCgr1PrPfc54/aK:lF3BDdk7kW061PrPknK

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.e562751a0c7bf25c1f817bfa3ab758be.exe
- Size
  
  112KB
- MD5
  
  e562751a0c7bf25c1f817bfa3ab758be
- SHA1
  
  0d4f8e8b1650afd9efea5d9754abf3a9b3d54321
- SHA256
  
  1441d36fb28be1b4e964e69fe8deb58f2920fa49635a99e614320bf8f0693634
- SHA512
  
  1aaa0f6c15087e144b6db3f60cecde4508146e70d6afb6e877943ea079743a102d590e6bd64316fc6274d3fca36c53ac2f12e1b1e17ef731f38b271eda67935f
- SSDEEP
  
  3072:LKu9HWKt3DdDd7I7jPgKJpCgr1PrPfc54/aK:lF3BDdk7kW061PrPknK
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2