099bea8c072c19e35c09e2c035d36214aedbc67672d753162b2144f21661523f | Triage

Sharing

Copy URL Twitter E-mail

General

Target

NEAS.fb434896c277b24347c5d6a99338fe50.exe
Size

56KB
Sample

231103-rwd9sscf2y
MD5

fb434896c277b24347c5d6a99338fe50
SHA1

42d1e95bb3299dd38c44c235e849c6ff40a9a084
SHA256

099bea8c072c19e35c09e2c035d36214aedbc67672d753162b2144f21661523f
SHA512

f4c3bb76405bec13fc729c4265a19e229f1a0135a92bddc02046fe4261e74890e29e433d1f8799d0ad629715ec72263cb6d1b03dd3575173301095c306de0305
SSDEEP

768:+jCiWW9Yod7TSCualysnztzAiFENv8mwWEPxwLRN0pHC9mGsGq4wxcCKRfW0rDgD:+7xd7TS3annRwlqGqriRR2z

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.fb434896c277b24347c5d6a99338fe50.exe
- Size
  
  56KB
- MD5
  
  fb434896c277b24347c5d6a99338fe50
- SHA1
  
  42d1e95bb3299dd38c44c235e849c6ff40a9a084
- SHA256
  
  099bea8c072c19e35c09e2c035d36214aedbc67672d753162b2144f21661523f
- SHA512
  
  f4c3bb76405bec13fc729c4265a19e229f1a0135a92bddc02046fe4261e74890e29e433d1f8799d0ad629715ec72263cb6d1b03dd3575173301095c306de0305
- SSDEEP
  
  768:+jCiWW9Yod7TSCualysnztzAiFENv8mwWEPxwLRN0pHC9mGsGq4wxcCKRfW0rDgD:+7xd7TS3annRwlqGqriRR2z
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2