63a1e8a37ef28ee90cd7adef7f3c76d05faf69062a767fb2592443fb3b1b30d3 | Triage

Sharing

General

Target

NEAS.f9f824ca55ebe1dd34689436c972f290.exe
Size

63KB
Sample

231102-vdzpkacc3y
MD5

f9f824ca55ebe1dd34689436c972f290
SHA1

b8954984a91ca5eb08caf04d9a42c00144a9a801
SHA256

63a1e8a37ef28ee90cd7adef7f3c76d05faf69062a767fb2592443fb3b1b30d3
SHA512

99d20aaeafa55013e455ee9b4fc8339dab4a9216be9be1a3154c2f0107752411bd938f9df630e36a3f78a2537a3c3efbd54c69a8b4beeda36888b845ad7fc933
SSDEEP

1536:bG9MKrhOQdyLvEySbohmM9j9veW+Qe78zjH1juIZo:bW9hqErFMM78XH1juIZo

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.f9f824ca55ebe1dd34689436c972f290.exe
- Size
  
  63KB
- MD5
  
  f9f824ca55ebe1dd34689436c972f290
- SHA1
  
  b8954984a91ca5eb08caf04d9a42c00144a9a801
- SHA256
  
  63a1e8a37ef28ee90cd7adef7f3c76d05faf69062a767fb2592443fb3b1b30d3
- SHA512
  
  99d20aaeafa55013e455ee9b4fc8339dab4a9216be9be1a3154c2f0107752411bd938f9df630e36a3f78a2537a3c3efbd54c69a8b4beeda36888b845ad7fc933
- SSDEEP
  
  1536:bG9MKrhOQdyLvEySbohmM9j9veW+Qe78zjH1juIZo:bW9hqErFMM78XH1juIZo
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2