49b5c77a68e093691e39c83b55681c355588903ef62959d350ac7d7781a93d1b | Triage

Sharing

Copy URL Twitter E-mail

General

Target

NEAS.b9e1bcdae7301c643e52f15146cb1910.exe
Size

45KB
Sample

231106-3xms4sge4w
MD5

b9e1bcdae7301c643e52f15146cb1910
SHA1

e6c1e9c375d0663dd766ab530e117fd6284facd2
SHA256

49b5c77a68e093691e39c83b55681c355588903ef62959d350ac7d7781a93d1b
SHA512

33f64116b14ad41f2e8b2ee29fb05bb730e4136e2c2e47379d7e6476e6052e1e6676bc04420e92919bbfa30d80e2cd49873147a82b9374a10b7bc06a7e50fb01
SSDEEP

768:1aB7MLkaf4611EXrSlry9+X9pbaOkl9UoKtRmJ+/1H5i21:450fVvNpLkLPKtRXY21

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.b9e1bcdae7301c643e52f15146cb1910.exe
- Size
  
  45KB
- MD5
  
  b9e1bcdae7301c643e52f15146cb1910
- SHA1
  
  e6c1e9c375d0663dd766ab530e117fd6284facd2
- SHA256
  
  49b5c77a68e093691e39c83b55681c355588903ef62959d350ac7d7781a93d1b
- SHA512
  
  33f64116b14ad41f2e8b2ee29fb05bb730e4136e2c2e47379d7e6476e6052e1e6676bc04420e92919bbfa30d80e2cd49873147a82b9374a10b7bc06a7e50fb01
- SSDEEP
  
  768:1aB7MLkaf4611EXrSlry9+X9pbaOkl9UoKtRmJ+/1H5i21:450fVvNpLkLPKtRXY21
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2