b7dd743242713b7223f2e9514538bd2fa79ef490dc4a4cc90e5cc0d234545e48 | Triage

Sharing

General

Target

NEAS.3af148aeb814e9c50e0f0cc46652e298.exe
Size

93KB
Sample

231106-xclgnaef43
MD5

3af148aeb814e9c50e0f0cc46652e298
SHA1

b7db8ad65a9d27929830326c6bf8275f629aec77
SHA256

b7dd743242713b7223f2e9514538bd2fa79ef490dc4a4cc90e5cc0d234545e48
SHA512

66629585bcf832189dce83e49c90f339dee7aaa212e801b320ce9d897e29da8a0976cd5bb4de46b7d3aee7e3a20023b792c1cc109144f0c1c5f8c6d96ca625cf
SSDEEP

1536:FwFTe+xMA8lJj3uFSlNTOWSu3xnpUIWDFpZ0dF35fsaMiwihtIbbpkp:+FTRL8lJjS+lOyjN2Fb0d95fdMiwaIbq

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.3af148aeb814e9c50e0f0cc46652e298.exe
- Size
  
  93KB
- MD5
  
  3af148aeb814e9c50e0f0cc46652e298
- SHA1
  
  b7db8ad65a9d27929830326c6bf8275f629aec77
- SHA256
  
  b7dd743242713b7223f2e9514538bd2fa79ef490dc4a4cc90e5cc0d234545e48
- SHA512
  
  66629585bcf832189dce83e49c90f339dee7aaa212e801b320ce9d897e29da8a0976cd5bb4de46b7d3aee7e3a20023b792c1cc109144f0c1c5f8c6d96ca625cf
- SSDEEP
  
  1536:FwFTe+xMA8lJj3uFSlNTOWSu3xnpUIWDFpZ0dF35fsaMiwihtIbbpkp:+FTRL8lJjS+lOyjN2Fb0d95fdMiwaIbq
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2