345f285bad9bf594ebc1ae6ce78a589b7f8ceb9d3010892a60b22c0ed947e15b | Triage

Sharing

General

Target

NEAS.b20d30aecc7152f1b8d9670424650010.exe
Size

201KB
Sample

231103-shrhmsdd4x
MD5

b20d30aecc7152f1b8d9670424650010
SHA1

416de4ce07a4e9127739e58899ed6465d760676b
SHA256

345f285bad9bf594ebc1ae6ce78a589b7f8ceb9d3010892a60b22c0ed947e15b
SHA512

27f89478aea4eb2940a75e9e8fb885c6132216bab0d861f70d4a6b2c861214371bdf204a8583190ace70700b81d418ecd11e2a14c4f839cf8321d5d89b8c8333
SSDEEP

3072:+LDJHh2QdP8cIltNnTbNf1TTU0cl4UdbI3Cdic1h6qFs3DXwUSxgZ2y1:8NwmoNnTd1vqTI3H6h60wDAKky1

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.b20d30aecc7152f1b8d9670424650010.exe
- Size
  
  201KB
- MD5
  
  b20d30aecc7152f1b8d9670424650010
- SHA1
  
  416de4ce07a4e9127739e58899ed6465d760676b
- SHA256
  
  345f285bad9bf594ebc1ae6ce78a589b7f8ceb9d3010892a60b22c0ed947e15b
- SHA512
  
  27f89478aea4eb2940a75e9e8fb885c6132216bab0d861f70d4a6b2c861214371bdf204a8583190ace70700b81d418ecd11e2a14c4f839cf8321d5d89b8c8333
- SSDEEP
  
  3072:+LDJHh2QdP8cIltNnTbNf1TTU0cl4UdbI3Cdic1h6qFs3DXwUSxgZ2y1:8NwmoNnTd1vqTI3H6h60wDAKky1
Score

8^/10

persistence
- Modifies AppInit DLL entries
  persistence
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2