7791055c958936585b253099456ca1cdf1a6d71102db28bd62204844a4cd38a1 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

NEAS.a26ab29bfe0383f51b8e4074bcd3e1e0.exe
Size

535KB
Sample

231111-fa43jsbg45
MD5

a26ab29bfe0383f51b8e4074bcd3e1e0
SHA1

3e54a5c998e4afa87c8cff2fb27472f3a63a8f86
SHA256

7791055c958936585b253099456ca1cdf1a6d71102db28bd62204844a4cd38a1
SHA512

61f84cb259394b8573d8ea4c5b306df35aa7a50c4e3b9fc820a4c63d86f69b6624946c3b40a29edc0a0c045d4ac4d9af037a1572e25bb2778cab53a8c2562238
SSDEEP

6144:rem4VZVTZlVrtv35CPXbo92ynn8sbeWD25CPHm3R03B5CPXbo92ynnZlVrtv35Cl:r2bTHRFbeD3R0VFHRFbet

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.a26ab29bfe0383f51b8e4074bcd3e1e0.exe
- Size
  
  535KB
- MD5
  
  a26ab29bfe0383f51b8e4074bcd3e1e0
- SHA1
  
  3e54a5c998e4afa87c8cff2fb27472f3a63a8f86
- SHA256
  
  7791055c958936585b253099456ca1cdf1a6d71102db28bd62204844a4cd38a1
- SHA512
  
  61f84cb259394b8573d8ea4c5b306df35aa7a50c4e3b9fc820a4c63d86f69b6624946c3b40a29edc0a0c045d4ac4d9af037a1572e25bb2778cab53a8c2562238
- SSDEEP
  
  6144:rem4VZVTZlVrtv35CPXbo92ynn8sbeWD25CPHm3R03B5CPXbo92ynnZlVrtv35Cl:r2bTHRFbeD3R0VFHRFbet
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2