3d61838b1e02aa0fbc5a17c224207656bfa4be63bad775dc495c51a13a9c7ef4 | Triage

Sharing

General

Target

NEAS.8b6de8678cdcda25d5a11f3d85454360.exe
Size

154KB
Sample

231107-waj1daeb85
MD5

8b6de8678cdcda25d5a11f3d85454360
SHA1

535af5f2fbbbb5f7986122c28a20c055a1001cca
SHA256

3d61838b1e02aa0fbc5a17c224207656bfa4be63bad775dc495c51a13a9c7ef4
SHA512

e5afd88dce460bc4131c1a53373cbbf618f4bbd92ef1183def175f10d3f4aba2a8528aeb6f45fdfb4142e16f9cf196cc94371bae3bf5ec5261ade08bb03f26ca
SSDEEP

3072:KYyVk5uvXRNIO1uAQDUBBsEbfabDqKZgZqwxR1GzEkjsScYIbBvjT8Yt:Kbk5uvXrbQaB9CbxkbQjsz5vjAW

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.8b6de8678cdcda25d5a11f3d85454360.exe
- Size
  
  154KB
- MD5
  
  8b6de8678cdcda25d5a11f3d85454360
- SHA1
  
  535af5f2fbbbb5f7986122c28a20c055a1001cca
- SHA256
  
  3d61838b1e02aa0fbc5a17c224207656bfa4be63bad775dc495c51a13a9c7ef4
- SHA512
  
  e5afd88dce460bc4131c1a53373cbbf618f4bbd92ef1183def175f10d3f4aba2a8528aeb6f45fdfb4142e16f9cf196cc94371bae3bf5ec5261ade08bb03f26ca
- SSDEEP
  
  3072:KYyVk5uvXRNIO1uAQDUBBsEbfabDqKZgZqwxR1GzEkjsScYIbBvjT8Yt:Kbk5uvXrbQaB9CbxkbQjsz5vjAW
Score

8^/10

persistence
- Modifies AppInit DLL entries
  persistence
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2