455a6f28192572130bdc165fd1c1517205a72df31acbc714bb8d516f7d3ca8c2 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

NEAS.bd0f552bd288678de008ae7a3c1751a0.exe
Size

56KB
Sample

231102-vbexdace77
MD5

bd0f552bd288678de008ae7a3c1751a0
SHA1

7a868477f869afe129620396def639ab0aaf9d25
SHA256

455a6f28192572130bdc165fd1c1517205a72df31acbc714bb8d516f7d3ca8c2
SHA512

7037859bcf456acdd66ea9683ce990c8bf1b88c4f5b2275937e08018c05bbabc9c9f4c37561f866ef778f0baa6a46e6bb396f5a61b315691b658d648e61c0e7f
SSDEEP

768:sJBAhP1rC6KdOzoVQYTWhpBsNcPAyEnh6JRhSJVVw0o5eZw/1H57Xdnhg:sJBAhPIO0VQ7pB6c9EvRZKX

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.bd0f552bd288678de008ae7a3c1751a0.exe
- Size
  
  56KB
- MD5
  
  bd0f552bd288678de008ae7a3c1751a0
- SHA1
  
  7a868477f869afe129620396def639ab0aaf9d25
- SHA256
  
  455a6f28192572130bdc165fd1c1517205a72df31acbc714bb8d516f7d3ca8c2
- SHA512
  
  7037859bcf456acdd66ea9683ce990c8bf1b88c4f5b2275937e08018c05bbabc9c9f4c37561f866ef778f0baa6a46e6bb396f5a61b315691b658d648e61c0e7f
- SSDEEP
  
  768:sJBAhP1rC6KdOzoVQYTWhpBsNcPAyEnh6JRhSJVVw0o5eZw/1H57Xdnhg:sJBAhPIO0VQ7pB6c9EvRZKX
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2