a8df7703adc3502326d2180c1586b297288539e96395d58217c5ebc9e0b6535b | Triage

Sharing

General

Target

NEAS.99747aa350b52ccc49aebcba7e0de070.exe
Size

176KB
Sample

231106-c9zekahg85
MD5

99747aa350b52ccc49aebcba7e0de070
SHA1

26e2bf2df6d9a535e424d94b635c92ac164c974a
SHA256

a8df7703adc3502326d2180c1586b297288539e96395d58217c5ebc9e0b6535b
SHA512

1fbacf65d6e7c7e688b77da253f920f8e65507156eaa9f54a595896ac643c6954f68c85f521ea0162e793b29a511c726d5504a471746ad7013477f5df4d7041d
SSDEEP

3072:kop9Jvl8cUE5JarlOGA8d2E2fAYjmjRrz3E3:kq9JecU0JRXE2fAEG4

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.99747aa350b52ccc49aebcba7e0de070.exe
- Size
  
  176KB
- MD5
  
  99747aa350b52ccc49aebcba7e0de070
- SHA1
  
  26e2bf2df6d9a535e424d94b635c92ac164c974a
- SHA256
  
  a8df7703adc3502326d2180c1586b297288539e96395d58217c5ebc9e0b6535b
- SHA512
  
  1fbacf65d6e7c7e688b77da253f920f8e65507156eaa9f54a595896ac643c6954f68c85f521ea0162e793b29a511c726d5504a471746ad7013477f5df4d7041d
- SSDEEP
  
  3072:kop9Jvl8cUE5JarlOGA8d2E2fAYjmjRrz3E3:kq9JecU0JRXE2fAEG4
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2