f7ed59fc7bfcbd7cc1b0ede69a09f92d5cc5caa3c8407e970df01a4f010737a8 | Triage

Sharing

General

Target

NEAS.f59de2c226d005e27e86d6d01cc39510.exe
Size

64KB
Sample

231102-rd67vsch61
MD5

f59de2c226d005e27e86d6d01cc39510
SHA1

2d92848699b0dd6be08c9256186b14fd34b18191
SHA256

f7ed59fc7bfcbd7cc1b0ede69a09f92d5cc5caa3c8407e970df01a4f010737a8
SHA512

21fee501b7fd7778d8182c98ed9b07b1fa1fe9f1d5e8ab0c70b94f2b37c04d8944388658527daf5892d9d049cb6891c5218487ee407ca3d58c51bd9282da5c79
SSDEEP

768:M8i2EGcsTvz+0/joZwttuB8KKL6Xv3Pe/1H54FYnDKA2kms8Y/ts/9d2NzYVmfiJ:M72II+0/joZUqRUWynDrPFW2iwTbW

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.f59de2c226d005e27e86d6d01cc39510.exe
- Size
  
  64KB
- MD5
  
  f59de2c226d005e27e86d6d01cc39510
- SHA1
  
  2d92848699b0dd6be08c9256186b14fd34b18191
- SHA256
  
  f7ed59fc7bfcbd7cc1b0ede69a09f92d5cc5caa3c8407e970df01a4f010737a8
- SHA512
  
  21fee501b7fd7778d8182c98ed9b07b1fa1fe9f1d5e8ab0c70b94f2b37c04d8944388658527daf5892d9d049cb6891c5218487ee407ca3d58c51bd9282da5c79
- SSDEEP
  
  768:M8i2EGcsTvz+0/joZwttuB8KKL6Xv3Pe/1H54FYnDKA2kms8Y/ts/9d2NzYVmfiJ:M72II+0/joZUqRUWynDrPFW2iwTbW
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2