6acd1f1f9023fc689a4d9668353ce62d5e5b299a8d5c41eaac71bd2706d8eed1 | Triage

Sharing

General

Target

NEAS.91afebb8d9d698d17f4dd6e6af121cc0.exe
Size

171KB
Sample

231102-rksytada6x
MD5

91afebb8d9d698d17f4dd6e6af121cc0
SHA1

656302322f5cd4011abef0b23d577054772dbf3c
SHA256

6acd1f1f9023fc689a4d9668353ce62d5e5b299a8d5c41eaac71bd2706d8eed1
SHA512

6593ee02fb18fa36880fe51aeb1054d9c765c535adf23ab4183d1de684e951b8f5f23a7cb035d425306cfbe0445d71c01fb910880f3fd6df93450b1b9de3af31
SSDEEP

3072:21NY7PM/Fngu+tAcrbFAJc+RsUi1aVDkOvhJjvJ:q6aFOrtMsQB

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.91afebb8d9d698d17f4dd6e6af121cc0.exe
- Size
  
  171KB
- MD5
  
  91afebb8d9d698d17f4dd6e6af121cc0
- SHA1
  
  656302322f5cd4011abef0b23d577054772dbf3c
- SHA256
  
  6acd1f1f9023fc689a4d9668353ce62d5e5b299a8d5c41eaac71bd2706d8eed1
- SHA512
  
  6593ee02fb18fa36880fe51aeb1054d9c765c535adf23ab4183d1de684e951b8f5f23a7cb035d425306cfbe0445d71c01fb910880f3fd6df93450b1b9de3af31
- SSDEEP
  
  3072:21NY7PM/Fngu+tAcrbFAJc+RsUi1aVDkOvhJjvJ:q6aFOrtMsQB
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2