e4ff50fa63e6789847ae99a85447552eb8a424ec3b89d7e03b06e9477f9f0a00 | Triage

Sharing

General

Target

NEAS.14d7531f741556685197fe502fee4590.exe
Size

71KB
Sample

231112-lqgj3sfa78
MD5

14d7531f741556685197fe502fee4590
SHA1

c73e73a957ed1acd4946f9d03556e34f4dcae1c7
SHA256

e4ff50fa63e6789847ae99a85447552eb8a424ec3b89d7e03b06e9477f9f0a00
SHA512

8e893aed380f4f45e1f6bf41caf131c5c0f3ff8e1e34b9b7e58dcfb614a4d0399603731298c157466044f52257302849b1e89867723d981b169cbfcef73c64fe
SSDEEP

1536:19AJYJ68w7SQGSDsrmgAng1AhPzerPCs8BlnTi5xv/dxjYjZXU:UJY6D6NqgAIAhEqrfTkDjY5U

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.14d7531f741556685197fe502fee4590.exe
- Size
  
  71KB
- MD5
  
  14d7531f741556685197fe502fee4590
- SHA1
  
  c73e73a957ed1acd4946f9d03556e34f4dcae1c7
- SHA256
  
  e4ff50fa63e6789847ae99a85447552eb8a424ec3b89d7e03b06e9477f9f0a00
- SHA512
  
  8e893aed380f4f45e1f6bf41caf131c5c0f3ff8e1e34b9b7e58dcfb614a4d0399603731298c157466044f52257302849b1e89867723d981b169cbfcef73c64fe
- SSDEEP
  
  1536:19AJYJ68w7SQGSDsrmgAng1AhPzerPCs8BlnTi5xv/dxjYjZXU:UJY6D6NqgAIAhEqrfTkDjY5U
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2