4a22c3b051b4bf34c7a15dea8d71a6325af2642d49f8e3c89830e6505af50475 | Triage

Sharing

General

Target

NEAS.91fcea1c1ef809f7ab9f8973f1ec6ad2.exe
Size

128KB
Sample

231104-ssnjqsbh9y
MD5

91fcea1c1ef809f7ab9f8973f1ec6ad2
SHA1

e115462e38311011aab301761845984967db61af
SHA256

4a22c3b051b4bf34c7a15dea8d71a6325af2642d49f8e3c89830e6505af50475
SHA512

a45d4318fea5679e397625c03beec61a74dd095656333832cf9f1219e5904e4cd27047fcb8e4d940c58aec68a0135a306bd600203ab1f0278bda5b98f87afdcf
SSDEEP

3072:Cezt3SPhfGwr/peXp1l27eFSJdEN0s4WE+3S9pui6yYPaI7DX:Ce1SPhOwr/guC8ENm+3Mpui6yYPaI/

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.91fcea1c1ef809f7ab9f8973f1ec6ad2.exe
- Size
  
  128KB
- MD5
  
  91fcea1c1ef809f7ab9f8973f1ec6ad2
- SHA1
  
  e115462e38311011aab301761845984967db61af
- SHA256
  
  4a22c3b051b4bf34c7a15dea8d71a6325af2642d49f8e3c89830e6505af50475
- SHA512
  
  a45d4318fea5679e397625c03beec61a74dd095656333832cf9f1219e5904e4cd27047fcb8e4d940c58aec68a0135a306bd600203ab1f0278bda5b98f87afdcf
- SSDEEP
  
  3072:Cezt3SPhfGwr/peXp1l27eFSJdEN0s4WE+3S9pui6yYPaI7DX:Ce1SPhOwr/guC8ENm+3Mpui6yYPaI/
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2