096a2ced90c09c93c50baf9c8511e2521b79d084e86c4f369f13d734dd91b6c8 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

NEAS.a8e48619073172bd83920e28237f847a.exe
Size

421KB
Sample

231111-nkngjsed7s
MD5

a8e48619073172bd83920e28237f847a
SHA1

67421304ab622e6c63377a46b0da68a19b418398
SHA256

096a2ced90c09c93c50baf9c8511e2521b79d084e86c4f369f13d734dd91b6c8
SHA512

cafa4d53d1beddb46d17ccff64393e90fb043308f797d7dd97c75bf65a5ca1cb5db4281bfc8cfa79ad8f9524b19144e4df8f7721325ff3b69e4a0a9fc25bace7
SSDEEP

6144:UOdF9TzoMjVFK35wRxzGz0/2s+HKx5Nx5xFFFFxxxxxxxxxxxxxxxxxxxxxxxxxN:UOd0z3CV/20

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.a8e48619073172bd83920e28237f847a.exe
- Size
  
  421KB
- MD5
  
  a8e48619073172bd83920e28237f847a
- SHA1
  
  67421304ab622e6c63377a46b0da68a19b418398
- SHA256
  
  096a2ced90c09c93c50baf9c8511e2521b79d084e86c4f369f13d734dd91b6c8
- SHA512
  
  cafa4d53d1beddb46d17ccff64393e90fb043308f797d7dd97c75bf65a5ca1cb5db4281bfc8cfa79ad8f9524b19144e4df8f7721325ff3b69e4a0a9fc25bace7
- SSDEEP
  
  6144:UOdF9TzoMjVFK35wRxzGz0/2s+HKx5Nx5xFFFFxxxxxxxxxxxxxxxxxxxxxxxxxN:UOd0z3CV/20
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2