8b289a1f7d80da9cb4784c8fb036d042347ac9556ba9d920a16672eb3fed65c7 | Triage

Sharing

General

Target

NEAS.6d1545546eae11aa5bce117b1fb87bc0.exe
Size

192KB
Sample

231101-rhg4jacg8w
MD5

6d1545546eae11aa5bce117b1fb87bc0
SHA1

8cd0af8ae21b2733610a23e50abf95bac285342d
SHA256

8b289a1f7d80da9cb4784c8fb036d042347ac9556ba9d920a16672eb3fed65c7
SHA512

1ad83a8965683cd7c5cb5fa7765146f34b945bfb3afa3498659d1e289e26c7acb75809aba18611ac72230bf8c362e0170f789c030e10514321d9e1d1abcd4366
SSDEEP

3072:WxodtD2vN3JBNGJarlOGA8d2E2fAYjmjRrz3EdoQO6+bQ+:1AvN5jGJRXE2fAEGD16+bJ

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.6d1545546eae11aa5bce117b1fb87bc0.exe
- Size
  
  192KB
- MD5
  
  6d1545546eae11aa5bce117b1fb87bc0
- SHA1
  
  8cd0af8ae21b2733610a23e50abf95bac285342d
- SHA256
  
  8b289a1f7d80da9cb4784c8fb036d042347ac9556ba9d920a16672eb3fed65c7
- SHA512
  
  1ad83a8965683cd7c5cb5fa7765146f34b945bfb3afa3498659d1e289e26c7acb75809aba18611ac72230bf8c362e0170f789c030e10514321d9e1d1abcd4366
- SSDEEP
  
  3072:WxodtD2vN3JBNGJarlOGA8d2E2fAYjmjRrz3EdoQO6+bQ+:1AvN5jGJRXE2fAEGD16+bJ
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2