aae58d1150211fbbb285fb2df6edfb0604291a2566449d186413c426c6bcacfc | Triage

Sharing

General

Target

NEAS.76662570d8c21b3ac2f7cc1d4479c170.exe
Size

440KB
Sample

231107-xygqlafg55
MD5

76662570d8c21b3ac2f7cc1d4479c170
SHA1

a5f2d6a90ab4bc20c083b5b877e29a00768515f8
SHA256

aae58d1150211fbbb285fb2df6edfb0604291a2566449d186413c426c6bcacfc
SHA512

6f9fc7fbbf2865009653bef31f94433bb1ba8931c1e81c97b07291c9cca5a1d9581b14fdd86bd2c7c3c1f3b05640c6e40ee795d04fffd4d82f6d920bb6e3d5a3
SSDEEP

6144:21pn8fvlsHdkiOBUykxrjfPXIfvlsHdkiOGigX3IOA12jfvlsHdkiOBUykxrjfPw:2GvboivbwIOeYvboivb

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.76662570d8c21b3ac2f7cc1d4479c170.exe
- Size
  
  440KB
- MD5
  
  76662570d8c21b3ac2f7cc1d4479c170
- SHA1
  
  a5f2d6a90ab4bc20c083b5b877e29a00768515f8
- SHA256
  
  aae58d1150211fbbb285fb2df6edfb0604291a2566449d186413c426c6bcacfc
- SHA512
  
  6f9fc7fbbf2865009653bef31f94433bb1ba8931c1e81c97b07291c9cca5a1d9581b14fdd86bd2c7c3c1f3b05640c6e40ee795d04fffd4d82f6d920bb6e3d5a3
- SSDEEP
  
  6144:21pn8fvlsHdkiOBUykxrjfPXIfvlsHdkiOGigX3IOA12jfvlsHdkiOBUykxrjfPw:2GvboivbwIOeYvboivb
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2