41971e0f60de2d25dc70c6cab9acb668a6f643e08f98a993f51c27159769342c | Triage

Sharing

General

Target

NEAS.79e4ff7e07ef027149bee83fa1615910.exe
Size

568KB
Sample

231102-t89ycabb55
MD5

79e4ff7e07ef027149bee83fa1615910
SHA1

89c552505738eeb20376788de9b80d2bf3b941c3
SHA256

41971e0f60de2d25dc70c6cab9acb668a6f643e08f98a993f51c27159769342c
SHA512

5334832dfeae54af3a6c0d62916187b44f4ab967fa13f6b5698db56566e6e789f9b8bf700b1d083c292a4ab0391bd36da47b98893b2815dce2a29900562b6f43
SSDEEP

12288:1mnsl+4bSDyoJMRhxgrO12i+4f0c5/3wb:1mx4bwTJM1N2Kc

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.79e4ff7e07ef027149bee83fa1615910.exe
- Size
  
  568KB
- MD5
  
  79e4ff7e07ef027149bee83fa1615910
- SHA1
  
  89c552505738eeb20376788de9b80d2bf3b941c3
- SHA256
  
  41971e0f60de2d25dc70c6cab9acb668a6f643e08f98a993f51c27159769342c
- SHA512
  
  5334832dfeae54af3a6c0d62916187b44f4ab967fa13f6b5698db56566e6e789f9b8bf700b1d083c292a4ab0391bd36da47b98893b2815dce2a29900562b6f43
- SSDEEP
  
  12288:1mnsl+4bSDyoJMRhxgrO12i+4f0c5/3wb:1mx4bwTJM1N2Kc
Score

7^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2