404855e5fb96f25714c36080d49bd367a0077568361b75be4c5d9b021c3acbff | Triage

Sharing

Copy URL Twitter E-mail

General

Target

NEAS.27179920b393f41a6f028ea2d434d8c0.exe
Size

77KB
Sample

231107-c98m8sbh62
MD5

27179920b393f41a6f028ea2d434d8c0
SHA1

d4dd59289a830b3fd1a775782506bfed97868c1d
SHA256

404855e5fb96f25714c36080d49bd367a0077568361b75be4c5d9b021c3acbff
SHA512

e33fd547f177f2988760174a54e9054bb4b8b9bc3317ae2d0c78b09e207e40a54cf1cc7f306d56372e3bd20b6e901d2e14763eca74c48b165b02d0252bcf47a1
SSDEEP

1536:1i0uWwMy6hJbdyMHDJd48OucdfRohvspKpig8MonaX+O6kKKM+unBU8mlstUdUH7:1NFh/jgXuco5BPOkCJm7atT

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.27179920b393f41a6f028ea2d434d8c0.exe
- Size
  
  77KB
- MD5
  
  27179920b393f41a6f028ea2d434d8c0
- SHA1
  
  d4dd59289a830b3fd1a775782506bfed97868c1d
- SHA256
  
  404855e5fb96f25714c36080d49bd367a0077568361b75be4c5d9b021c3acbff
- SHA512
  
  e33fd547f177f2988760174a54e9054bb4b8b9bc3317ae2d0c78b09e207e40a54cf1cc7f306d56372e3bd20b6e901d2e14763eca74c48b165b02d0252bcf47a1
- SSDEEP
  
  1536:1i0uWwMy6hJbdyMHDJd48OucdfRohvspKpig8MonaX+O6kKKM+unBU8mlstUdUH7:1NFh/jgXuco5BPOkCJm7atT
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2