33390f38a4c5971929c673e4c5138184994406339a8bf76dbb073bc05c028d12 | Triage

Sharing

General

Target

NEAS.a88d56c642d6b070201a6ce803ceb610.exe
Size

322KB
Sample

231103-ngs8mabe43
MD5

a88d56c642d6b070201a6ce803ceb610
SHA1

6584900d3e4511a6e6a94c697f8c500b751e5cd9
SHA256

33390f38a4c5971929c673e4c5138184994406339a8bf76dbb073bc05c028d12
SHA512

78b734cba78e808f6419c458e37ff711d1aa6957d0514d0ee65910c231cc141e7a9d75319e793e61d94aeae5b67cd123068bd9680c7d07639140ad175ad3220e
SSDEEP

3072:miULGOCWr66aF3gGjJZYtMDjjQSwp+N5EEEEEEEEEleiSVGZ3Odl2:HULG/r3gltMDs+j/kOi

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.a88d56c642d6b070201a6ce803ceb610.exe
- Size
  
  322KB
- MD5
  
  a88d56c642d6b070201a6ce803ceb610
- SHA1
  
  6584900d3e4511a6e6a94c697f8c500b751e5cd9
- SHA256
  
  33390f38a4c5971929c673e4c5138184994406339a8bf76dbb073bc05c028d12
- SHA512
  
  78b734cba78e808f6419c458e37ff711d1aa6957d0514d0ee65910c231cc141e7a9d75319e793e61d94aeae5b67cd123068bd9680c7d07639140ad175ad3220e
- SSDEEP
  
  3072:miULGOCWr66aF3gGjJZYtMDjjQSwp+N5EEEEEEEEEleiSVGZ3Odl2:HULG/r3gltMDs+j/kOi
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2