General

  • Target

    NEAS.109fa502460e4de811c37349c38e4530.exe

  • Size

    125KB

  • Sample

    231103-mkrnjagc7v

  • MD5

    109fa502460e4de811c37349c38e4530

  • SHA1

    94ab37f3608246628f4f0c58d68d9edfb88e09ec

  • SHA256

    87d163134eec22ff34870d4883be78ccadf0cbbfabd64aefcc8d5722406359cd

  • SHA512

    4296259739d6942313d50a1f68176e74e34e9b00784c7fe45beb1c93735ff7f5f8bb67db3595cc7f839abc5417aceccb13a12284c8a8f08d9af159e20b715ac2

  • SSDEEP

    3072:qghTvS/U82Uo74wUeE+DhgrMje7gPszWhBlDeKUiiVeyWeIhhBOt:rS8jrU6DRMWhBcK1ZE

Score
10/10

Malware Config

Targets

    • Target

      NEAS.109fa502460e4de811c37349c38e4530.exe

    • Size

      125KB

    • MD5

      109fa502460e4de811c37349c38e4530

    • SHA1

      94ab37f3608246628f4f0c58d68d9edfb88e09ec

    • SHA256

      87d163134eec22ff34870d4883be78ccadf0cbbfabd64aefcc8d5722406359cd

    • SHA512

      4296259739d6942313d50a1f68176e74e34e9b00784c7fe45beb1c93735ff7f5f8bb67db3595cc7f839abc5417aceccb13a12284c8a8f08d9af159e20b715ac2

    • SSDEEP

      3072:qghTvS/U82Uo74wUeE+DhgrMje7gPszWhBlDeKUiiVeyWeIhhBOt:rS8jrU6DRMWhBcK1ZE

    Score
    10/10
    • Modifies WinLogon for persistence

    • Executes dropped EXE

    • Loads dropped DLL

    • Adds Run key to start application

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks