958cc3f68ee6dd17d287aaa679600b6bd2b26fb0aac5356fb8e1b2b14d20b4f9 | Triage

Sharing

General

Target

NEAS.3dfae469d65493018b63cd0ab10c54f9.exe
Size

91KB
Sample

231111-mpmkdaef25
MD5

3dfae469d65493018b63cd0ab10c54f9
SHA1

f9ec57d23e933be23dbaaf845827ba5bfece5606
SHA256

958cc3f68ee6dd17d287aaa679600b6bd2b26fb0aac5356fb8e1b2b14d20b4f9
SHA512

0882d075311407ddd17d56a9fefa854a047dd36307d920ac1fb46a44a29c03d432012747a700399f54f49c60bea4654ef4d4aa5ffdee8516a4d4e89ac6503ae4
SSDEEP

1536:XlkYcnYprKo+C1WRQa4QGibdA9hHtIBKCLmp1S0Kup/F9o5:XlTBB1WRbyqeMKCUYuA5

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.3dfae469d65493018b63cd0ab10c54f9.exe
- Size
  
  91KB
- MD5
  
  3dfae469d65493018b63cd0ab10c54f9
- SHA1
  
  f9ec57d23e933be23dbaaf845827ba5bfece5606
- SHA256
  
  958cc3f68ee6dd17d287aaa679600b6bd2b26fb0aac5356fb8e1b2b14d20b4f9
- SHA512
  
  0882d075311407ddd17d56a9fefa854a047dd36307d920ac1fb46a44a29c03d432012747a700399f54f49c60bea4654ef4d4aa5ffdee8516a4d4e89ac6503ae4
- SSDEEP
  
  1536:XlkYcnYprKo+C1WRQa4QGibdA9hHtIBKCLmp1S0Kup/F9o5:XlTBB1WRbyqeMKCUYuA5
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2