673d9a39d618846371ebd5519296611648c2563cebce2baa8c4b4899ed305962 | Triage

Sharing

General

Target

NEAS.97b1f91a4ab8892e35124c1f3d2b3180.exe
Size

1.7MB
Sample

231101-rkkmfafg27
MD5

97b1f91a4ab8892e35124c1f3d2b3180
SHA1

02b4525781ec14824193b3e2b452af1e7f78fa4c
SHA256

673d9a39d618846371ebd5519296611648c2563cebce2baa8c4b4899ed305962
SHA512

96e92d14ed59c98c334db4ad13f6dcdc78e24d7afc83cbd17be517ae4e5a47fe477a044d1f3db801db692ff4fc5838f7ac5df11ce048c2c34be649c35e291f9b
SSDEEP

24576:w/jSBq5h3q5hL6X1q5h3q5hM5Dgq5h3q5hL6X1q5h3q5h:l6KI6

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.97b1f91a4ab8892e35124c1f3d2b3180.exe
- Size
  
  1.7MB
- MD5
  
  97b1f91a4ab8892e35124c1f3d2b3180
- SHA1
  
  02b4525781ec14824193b3e2b452af1e7f78fa4c
- SHA256
  
  673d9a39d618846371ebd5519296611648c2563cebce2baa8c4b4899ed305962
- SHA512
  
  96e92d14ed59c98c334db4ad13f6dcdc78e24d7afc83cbd17be517ae4e5a47fe477a044d1f3db801db692ff4fc5838f7ac5df11ce048c2c34be649c35e291f9b
- SSDEEP
  
  24576:w/jSBq5h3q5hL6X1q5h3q5hM5Dgq5h3q5hL6X1q5h3q5h:l6KI6
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2