3f88ac9d2516992a501263d7d6bb00c8616c7ba83a1947266c977b3a841b09b3 | Triage

Sharing

General

Target

NEAS.7a122d7ae75c307301314d6ff85941c0.exe
Size

135KB
Sample

231112-lrd6cafb35
MD5

7a122d7ae75c307301314d6ff85941c0
SHA1

ab416cff99d47503520ba4d5473f5bcc709d5781
SHA256

3f88ac9d2516992a501263d7d6bb00c8616c7ba83a1947266c977b3a841b09b3
SHA512

ed1ca64f6930d7b61c4aaeaf1f503a188332273a947e944fcb68b00e297d4618869e5061a19f8d9db096e22c9a6958fcaa54f189ac289a1bd92413239798b1a7
SSDEEP

1536:UfsEqouTRcG/Mzvgf7xEuvnXNTRdUzwTekUOisZ1yDDajtXbV1iFt:UVqoCl/YgjxEufVU0TbTyDDalP0t

Score

10^/10

evasion persistence

Malware Config

Targets

- Target
  
  NEAS.7a122d7ae75c307301314d6ff85941c0.exe
- Size
  
  135KB
- MD5
  
  7a122d7ae75c307301314d6ff85941c0
- SHA1
  
  ab416cff99d47503520ba4d5473f5bcc709d5781
- SHA256
  
  3f88ac9d2516992a501263d7d6bb00c8616c7ba83a1947266c977b3a841b09b3
- SHA512
  
  ed1ca64f6930d7b61c4aaeaf1f503a188332273a947e944fcb68b00e297d4618869e5061a19f8d9db096e22c9a6958fcaa54f189ac289a1bd92413239798b1a7
- SSDEEP
  
  1536:UfsEqouTRcG/Mzvgf7xEuvnXNTRdUzwTekUOisZ1yDDajtXbV1iFt:UVqoCl/YgjxEufVU0TbTyDDalP0t
Score

10^/10

evasion persistence
- Modifies visiblity of hidden/system files in Explorer
  evasion
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Scheduled Task/Job

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Scheduled Task/Job

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Scheduled Task/Job

Defense Evasion

Hide Artifacts

Hidden Files and Directories

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

evasionpersistence

behavioral2

evasionpersistence