994b27787f2281912c8038335d2ef121835c3ff5d80ff662eb3aae2a1035f2d9 | Triage

Sharing

General

Target

NEAS.7172a442d2989d2575412f186ac3eae0.exe
Size

782KB
Sample

231105-xwjgeaag5v
MD5

7172a442d2989d2575412f186ac3eae0
SHA1

c656adbbac63acf72f3235013e62e399f3881974
SHA256

994b27787f2281912c8038335d2ef121835c3ff5d80ff662eb3aae2a1035f2d9
SHA512

ec52d746a2d082f6e38e287fccaeddab379a21d300f4c8c1da683f20e43519bd8fc02306869e436a486240077795a102034cc9e920e4e3cb5604cd5423d572b9
SSDEEP

3072:MGjhaq5iL0beJQZt32wLji5DlsODxRPNDkjJHzW9hUd56JsuBSjwA2i1vP2i1a1L:Hha8iAx+1zwjJHd6vB/ANMj8eY

Score

6^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.7172a442d2989d2575412f186ac3eae0.exe
- Size
  
  782KB
- MD5
  
  7172a442d2989d2575412f186ac3eae0
- SHA1
  
  c656adbbac63acf72f3235013e62e399f3881974
- SHA256
  
  994b27787f2281912c8038335d2ef121835c3ff5d80ff662eb3aae2a1035f2d9
- SHA512
  
  ec52d746a2d082f6e38e287fccaeddab379a21d300f4c8c1da683f20e43519bd8fc02306869e436a486240077795a102034cc9e920e4e3cb5604cd5423d572b9
- SSDEEP
  
  3072:MGjhaq5iL0beJQZt32wLji5DlsODxRPNDkjJHzW9hUd56JsuBSjwA2i1vP2i1a1L:Hha8iAx+1zwjJHd6vB/ANMj8eY
Score

6^/10

persistence
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2