78406358ca1cc06117bb9b7b195ffeea89f4c693d98da3f7d56151c1dcc41263 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

NEAS.514e2ee25e3abf1780150ff435d8a430.exe
Size

250KB
Sample

231113-egkrtagh3t
MD5

514e2ee25e3abf1780150ff435d8a430
SHA1

96eae64029055411f3f6862838ae72233a651903
SHA256

78406358ca1cc06117bb9b7b195ffeea89f4c693d98da3f7d56151c1dcc41263
SHA512

133df8ccc0db2991efcf98dab5f3cd52b63e8078382ea7d2b2a942385ac9fcf2394cd8839c063cab3e4921f8e85dc24f8d233c4465af4d8ea16d1fc66ea76f43
SSDEEP

6144:kxkQ4qV+BvCvfmZ7KRRRGBCvfmZ7KFpNlJTBCvfmZ7d:kxkQ4qj

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.514e2ee25e3abf1780150ff435d8a430.exe
- Size
  
  250KB
- MD5
  
  514e2ee25e3abf1780150ff435d8a430
- SHA1
  
  96eae64029055411f3f6862838ae72233a651903
- SHA256
  
  78406358ca1cc06117bb9b7b195ffeea89f4c693d98da3f7d56151c1dcc41263
- SHA512
  
  133df8ccc0db2991efcf98dab5f3cd52b63e8078382ea7d2b2a942385ac9fcf2394cd8839c063cab3e4921f8e85dc24f8d233c4465af4d8ea16d1fc66ea76f43
- SSDEEP
  
  6144:kxkQ4qV+BvCvfmZ7KRRRGBCvfmZ7KFpNlJTBCvfmZ7d:kxkQ4qj
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2