f9a37db659d36428805f547799356c5ec33456f8fb057ca2ec7b52f61cddd001 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

NEAS.85c70fa16752d7012141316cae5b8c90.exe
Size

45KB
Sample

231107-dy731acc42
MD5

85c70fa16752d7012141316cae5b8c90
SHA1

6755825df1781d6256e931dd8e1f6a65050e3e1e
SHA256

f9a37db659d36428805f547799356c5ec33456f8fb057ca2ec7b52f61cddd001
SHA512

7e52a3361fdfa3cf3c524389be674f4f22ec100dbc5395370f25c8870fdf785072d13fc482c0f5a8aee50a811448d0e516f3eff2ea65014cff9c1c9782c15e91
SSDEEP

768:G1MxPBXLY0XFxHjOjKqOXv8g1A30CQcuYtACT6nBk/IV/1H5F:GsPhs0XG2Ugu0C338BjPr

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.85c70fa16752d7012141316cae5b8c90.exe
- Size
  
  45KB
- MD5
  
  85c70fa16752d7012141316cae5b8c90
- SHA1
  
  6755825df1781d6256e931dd8e1f6a65050e3e1e
- SHA256
  
  f9a37db659d36428805f547799356c5ec33456f8fb057ca2ec7b52f61cddd001
- SHA512
  
  7e52a3361fdfa3cf3c524389be674f4f22ec100dbc5395370f25c8870fdf785072d13fc482c0f5a8aee50a811448d0e516f3eff2ea65014cff9c1c9782c15e91
- SSDEEP
  
  768:G1MxPBXLY0XFxHjOjKqOXv8g1A30CQcuYtACT6nBk/IV/1H5F:GsPhs0XG2Ugu0C338BjPr
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2