b8530f939526f715d48d9b938a3c7abc1aa6b4fd394049de37bb12e04d94d5f3 | Triage

Sharing

General

Target

NEAS.dafe5abd3a870a2c316e1d05106c8b80.exe
Size

49KB
Sample

231111-lzr26sdh68
MD5

dafe5abd3a870a2c316e1d05106c8b80
SHA1

89f7c57e595c74843b33e0ed7453e912d0781ff2
SHA256

b8530f939526f715d48d9b938a3c7abc1aa6b4fd394049de37bb12e04d94d5f3
SHA512

31e6fc44657a592a76e2746806c0ec38116fb671c6086d8a3693b5e8a323d8b99bb791aaba5ec406ae66e13646a2d438b599682043e676c6f7a9c5aee4d1d58f
SSDEEP

768:EJoWCBXo2f5URKdbVFMnUCVkIsn3CL1+tzAmi5lybHnq/1H5yW2Xdnh:EiJY2sKbXMRC3n3CJ+G5lqwAP

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.dafe5abd3a870a2c316e1d05106c8b80.exe
- Size
  
  49KB
- MD5
  
  dafe5abd3a870a2c316e1d05106c8b80
- SHA1
  
  89f7c57e595c74843b33e0ed7453e912d0781ff2
- SHA256
  
  b8530f939526f715d48d9b938a3c7abc1aa6b4fd394049de37bb12e04d94d5f3
- SHA512
  
  31e6fc44657a592a76e2746806c0ec38116fb671c6086d8a3693b5e8a323d8b99bb791aaba5ec406ae66e13646a2d438b599682043e676c6f7a9c5aee4d1d58f
- SSDEEP
  
  768:EJoWCBXo2f5URKdbVFMnUCVkIsn3CL1+tzAmi5lybHnq/1H5yW2Xdnh:EiJY2sKbXMRC3n3CJ+G5lqwAP
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2