8e7be788d2ae6de60800ea16fe5a08f901e36f85123dee24e18f23a26824db3f | Triage

Sharing

General

Target

NEAS.9008cc207249a51c491e3da748268640.exe
Size

112KB
Sample

231101-rkbpjafe57
MD5

9008cc207249a51c491e3da748268640
SHA1

33477ecc75ff00b3937ee10ef5f834e6e6376ab8
SHA256

8e7be788d2ae6de60800ea16fe5a08f901e36f85123dee24e18f23a26824db3f
SHA512

1043e37c091912a6344c067c29182315291bd972a02da50f627d6c270df7110e63ea2b92c6e316eef53f9e271dfd715f78ff47b8960d0d83c1dc48f41f6b638d
SSDEEP

1536:T3NoQJ5AYRiu2rlGH3Rl5h5x1AQKGWHY4wen+i4SStOqdSG6LYUgp2FBoenyieyp:bo1lqX5x1TIYli4Z5dZ64qnJd7P

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.9008cc207249a51c491e3da748268640.exe
- Size
  
  112KB
- MD5
  
  9008cc207249a51c491e3da748268640
- SHA1
  
  33477ecc75ff00b3937ee10ef5f834e6e6376ab8
- SHA256
  
  8e7be788d2ae6de60800ea16fe5a08f901e36f85123dee24e18f23a26824db3f
- SHA512
  
  1043e37c091912a6344c067c29182315291bd972a02da50f627d6c270df7110e63ea2b92c6e316eef53f9e271dfd715f78ff47b8960d0d83c1dc48f41f6b638d
- SSDEEP
  
  1536:T3NoQJ5AYRiu2rlGH3Rl5h5x1AQKGWHY4wen+i4SStOqdSG6LYUgp2FBoenyieyp:bo1lqX5x1TIYli4Z5dZ64qnJd7P
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2