e7681e71b3aaa8026463bf92a5adc267498a6d17aa147fbbbab162c6e068617f | Triage

Sharing

General

Target

NEAS.16447d63639aa07a9c509711ddaf9d37.exe
Size

756KB
Sample

231107-rqkjmahb8v
MD5

16447d63639aa07a9c509711ddaf9d37
SHA1

8e05a3d34830fcfa56dd2627e383f38b595bdbc9
SHA256

e7681e71b3aaa8026463bf92a5adc267498a6d17aa147fbbbab162c6e068617f
SHA512

1f8eae2adfe00d9595789783273f5013a09b492c9a6f7b6f8252731ae325809c81b776a937d8d0ce9f9675f4afeb9713a73c61c223a12e8cc3de82dbd407bf27
SSDEEP

12288:us15tLseiOI4v222WtabY3swPssMs15tLseiOI4v222WtabY3swPsU:5yqI4v222WtabY8wksvyqI4v222Wtabo

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.16447d63639aa07a9c509711ddaf9d37.exe
- Size
  
  756KB
- MD5
  
  16447d63639aa07a9c509711ddaf9d37
- SHA1
  
  8e05a3d34830fcfa56dd2627e383f38b595bdbc9
- SHA256
  
  e7681e71b3aaa8026463bf92a5adc267498a6d17aa147fbbbab162c6e068617f
- SHA512
  
  1f8eae2adfe00d9595789783273f5013a09b492c9a6f7b6f8252731ae325809c81b776a937d8d0ce9f9675f4afeb9713a73c61c223a12e8cc3de82dbd407bf27
- SSDEEP
  
  12288:us15tLseiOI4v222WtabY3swPssMs15tLseiOI4v222WtabY3swPsU:5yqI4v222WtabY8wksvyqI4v222Wtabo
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2