fe5181b61d67962685a07fabad5ad91ba387336af006d6c89227ad0a417c4419 | Triage

Sharing

General

Target

NEAS.e75548a2f1c795b9ba45a60a7fe5e9d0.exe
Size

88KB
Sample

231102-rtz4gsdb5y
MD5

e75548a2f1c795b9ba45a60a7fe5e9d0
SHA1

6afad2b764e80f3c3e6a42139f0d095422a6df8f
SHA256

fe5181b61d67962685a07fabad5ad91ba387336af006d6c89227ad0a417c4419
SHA512

11c2b0f444955740213556e327d66cb1d0c249390ca6c56e76733b16145ffba2affb3a65b71705b61358cb72df8e40249d831999c063e33c514e791bfdbd3119
SSDEEP

1536:DlM5RRi8KgL613WJN0Qz8i9330lOQ5ZI2Mfnouy8L:DlURhnLIizZNklJrIXPoutL

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.e75548a2f1c795b9ba45a60a7fe5e9d0.exe
- Size
  
  88KB
- MD5
  
  e75548a2f1c795b9ba45a60a7fe5e9d0
- SHA1
  
  6afad2b764e80f3c3e6a42139f0d095422a6df8f
- SHA256
  
  fe5181b61d67962685a07fabad5ad91ba387336af006d6c89227ad0a417c4419
- SHA512
  
  11c2b0f444955740213556e327d66cb1d0c249390ca6c56e76733b16145ffba2affb3a65b71705b61358cb72df8e40249d831999c063e33c514e791bfdbd3119
- SSDEEP
  
  1536:DlM5RRi8KgL613WJN0Qz8i9330lOQ5ZI2Mfnouy8L:DlURhnLIizZNklJrIXPoutL
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2