09694e771e01a1926371c938c2947f9a6be7bbc9133142ed95261c23fc8f50d3 | Triage

Sharing

General

Target

NEAS.08338afe938e8a9d0ff51b017aed0b80.exe
Size

436KB
Sample

231101-q6d64sbc77
MD5

08338afe938e8a9d0ff51b017aed0b80
SHA1

0261db73b01afc8790e5419a3922a78814641c08
SHA256

09694e771e01a1926371c938c2947f9a6be7bbc9133142ed95261c23fc8f50d3
SHA512

bc59b8b3dbb83e38834d4122d7d19d0ed43c88b6f7d774d2a0bfbfa80cbddfb99aa7dcea3b5e68b32e8a99e77313ff7364a1385d4f85f984c5b827f37a091721
SSDEEP

3072:smVW8iTX/3Rfl8Xq1+0cxxsWEL02fXcIp08Moe9DESZLRD0/5YJSfy:tM7jJljxYTHYZM1v6YJb

Score

7^/10

persistence upx

Malware Config

Targets

- Target
  
  NEAS.08338afe938e8a9d0ff51b017aed0b80.exe
- Size
  
  436KB
- MD5
  
  08338afe938e8a9d0ff51b017aed0b80
- SHA1
  
  0261db73b01afc8790e5419a3922a78814641c08
- SHA256
  
  09694e771e01a1926371c938c2947f9a6be7bbc9133142ed95261c23fc8f50d3
- SHA512
  
  bc59b8b3dbb83e38834d4122d7d19d0ed43c88b6f7d774d2a0bfbfa80cbddfb99aa7dcea3b5e68b32e8a99e77313ff7364a1385d4f85f984c5b827f37a091721
- SSDEEP
  
  3072:smVW8iTX/3Rfl8Xq1+0cxxsWEL02fXcIp08Moe9DESZLRD0/5YJSfy:tM7jJljxYTHYZM1v6YJb
Score

7^/10

persistence upx
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2