bfba02180790f3e7300dc179edf42f11c15a29d9b41bc87b414127d60c682530 | Triage

Sharing

General

Target

NEAS.39583aadabfb02ae5ca2430bfdb549d0.exe
Size

81KB
Sample

231101-q9gfmsbb2w
MD5

39583aadabfb02ae5ca2430bfdb549d0
SHA1

67e27bef561e5a6b1eb33ddc5d393d6f1b69b165
SHA256

bfba02180790f3e7300dc179edf42f11c15a29d9b41bc87b414127d60c682530
SHA512

74f894a9a70e5cff287a66646f85eae7fc1c3c5e3ddca4dbdbbca6335f14659077eed4a308a8013833c3683d5c515af6164a6bb0d535bb9d8d0c896db0a406a0
SSDEEP

1536:5lrsicagdzn8K2ariPOcjk+XQuPVN72NMSWfyjs6AbGRix:5JjcF8KfCOcjk+guPVjSXs6v4

Score

7^/10

persistence upx

Malware Config

Targets

- Target
  
  NEAS.39583aadabfb02ae5ca2430bfdb549d0.exe
- Size
  
  81KB
- MD5
  
  39583aadabfb02ae5ca2430bfdb549d0
- SHA1
  
  67e27bef561e5a6b1eb33ddc5d393d6f1b69b165
- SHA256
  
  bfba02180790f3e7300dc179edf42f11c15a29d9b41bc87b414127d60c682530
- SHA512
  
  74f894a9a70e5cff287a66646f85eae7fc1c3c5e3ddca4dbdbbca6335f14659077eed4a308a8013833c3683d5c515af6164a6bb0d535bb9d8d0c896db0a406a0
- SSDEEP
  
  1536:5lrsicagdzn8K2ariPOcjk+XQuPVN72NMSWfyjs6AbGRix:5JjcF8KfCOcjk+guPVjSXs6v4
Score

7^/10

persistence upx
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2