036df62a36d7aa28e4e4352e8f9bd3e3169472c6b0b7ea260787737dd1ee140d | Triage

Sharing

Copy URL Twitter E-mail

General

Target

NEAS.b6a560819662c48f0ee8ec013e5d6800.exe
Size

64KB
Sample

231102-va915acd78
MD5

b6a560819662c48f0ee8ec013e5d6800
SHA1

99132ca0bf64192586a9445ba9c74764233c49be
SHA256

036df62a36d7aa28e4e4352e8f9bd3e3169472c6b0b7ea260787737dd1ee140d
SHA512

ab266bcb1c7bdfdf4a13883cb7a3707994e2ae504ed81848938c1c383d0583220b21b3b11e7a05f3cc977df91d78a1cba55bed97d62fe79e05a356d42d46e8ad
SSDEEP

768:BkVzuQrLDW27WQVmRb9nseeVI0QTV7iL+ZaFkLQ6cl2BW0/+uBm1KT/1H5TUXdnZ:QrLDWMq7xTsdF4F1KKh1uV1iL+iALMH6

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.b6a560819662c48f0ee8ec013e5d6800.exe
- Size
  
  64KB
- MD5
  
  b6a560819662c48f0ee8ec013e5d6800
- SHA1
  
  99132ca0bf64192586a9445ba9c74764233c49be
- SHA256
  
  036df62a36d7aa28e4e4352e8f9bd3e3169472c6b0b7ea260787737dd1ee140d
- SHA512
  
  ab266bcb1c7bdfdf4a13883cb7a3707994e2ae504ed81848938c1c383d0583220b21b3b11e7a05f3cc977df91d78a1cba55bed97d62fe79e05a356d42d46e8ad
- SSDEEP
  
  768:BkVzuQrLDW27WQVmRb9nseeVI0QTV7iL+ZaFkLQ6cl2BW0/+uBm1KT/1H5TUXdnZ:QrLDWMq7xTsdF4F1KKh1uV1iL+iALMH6
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2