f84a4f3ea1e276e54f85ff8d1cc333340abd6c6ca2d26399bcb47904b2ec4c84 | Triage

Sharing

General

Target

NEAS.fa7a0b8473d03bbdab16520d59c442d0.exe
Size

399KB
Sample

231103-nndrhshd2s
MD5

fa7a0b8473d03bbdab16520d59c442d0
SHA1

b1515f63b2533866fe9835d7442b312166cb393a
SHA256

f84a4f3ea1e276e54f85ff8d1cc333340abd6c6ca2d26399bcb47904b2ec4c84
SHA512

dd228df946f9c05851b36b2f2bb02824cef3cc8691f12bfc221f7b58442dfe7b9f692d5f0e86852d67ade54251108ea912600c224bccbdab2fd27aa8c4bdf83d
SSDEEP

6144:+r2BFO+dZrW2tgBdgzDEXE6NJsjwszqjwszeXwNJsjwszIjwszeXtjwszeXm:9Pc8sajMjejCjaj

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.fa7a0b8473d03bbdab16520d59c442d0.exe
- Size
  
  399KB
- MD5
  
  fa7a0b8473d03bbdab16520d59c442d0
- SHA1
  
  b1515f63b2533866fe9835d7442b312166cb393a
- SHA256
  
  f84a4f3ea1e276e54f85ff8d1cc333340abd6c6ca2d26399bcb47904b2ec4c84
- SHA512
  
  dd228df946f9c05851b36b2f2bb02824cef3cc8691f12bfc221f7b58442dfe7b9f692d5f0e86852d67ade54251108ea912600c224bccbdab2fd27aa8c4bdf83d
- SSDEEP
  
  6144:+r2BFO+dZrW2tgBdgzDEXE6NJsjwszqjwszeXwNJsjwszIjwszeXtjwszeXm:9Pc8sajMjejCjaj
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2