0b4abbda6165598edb563114ce70266611c4c4323bf4e65909f7f6d769ae81ed | Triage

Sharing

General

Target

NEAS.01fb94f45830509852f6ae590c6e8b70.exe
Size

45KB
Sample

231113-bd3axafc85
MD5

01fb94f45830509852f6ae590c6e8b70
SHA1

edeae8b43309e38ab8255444a24c4f910e8dca6f
SHA256

0b4abbda6165598edb563114ce70266611c4c4323bf4e65909f7f6d769ae81ed
SHA512

8f28e61694cda3e14256adea1c8d3c7af014e1c80e95cf97e82b97da16ab9a8132a55453f5a2fc52b8a1aa430b4513f56f3826d183708cd6cae4e06cd8bc8ff9
SSDEEP

768:KkO6CIsgyhnrYofcY+xqcfAoYiDZD4TWXYQQQQQQQQQQQQQQQQQQQQQQQQQQQQQm:Kk4eyBrYSjcfBbDkt8aoTW

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.01fb94f45830509852f6ae590c6e8b70.exe
- Size
  
  45KB
- MD5
  
  01fb94f45830509852f6ae590c6e8b70
- SHA1
  
  edeae8b43309e38ab8255444a24c4f910e8dca6f
- SHA256
  
  0b4abbda6165598edb563114ce70266611c4c4323bf4e65909f7f6d769ae81ed
- SHA512
  
  8f28e61694cda3e14256adea1c8d3c7af014e1c80e95cf97e82b97da16ab9a8132a55453f5a2fc52b8a1aa430b4513f56f3826d183708cd6cae4e06cd8bc8ff9
- SSDEEP
  
  768:KkO6CIsgyhnrYofcY+xqcfAoYiDZD4TWXYQQQQQQQQQQQQQQQQQQQQQQQQQQQQQm:Kk4eyBrYSjcfBbDkt8aoTW
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2