66f55f409d4762c4c30ab82a992c42f323555e94401c04f375d07511093ec0d6 | Triage

Sharing

General

Target

NEAS.b100124537037d118d3e413ed038c5c0.exe
Size

6.1MB
Sample

231113-g73resaf8s
MD5

b100124537037d118d3e413ed038c5c0
SHA1

8e0d6f707615882950b23cda3454c417cf7daa6a
SHA256

66f55f409d4762c4c30ab82a992c42f323555e94401c04f375d07511093ec0d6
SHA512

fbfd499ad2a08cb7e5cf3edcf5af4b2a807403f0969eaa2509a42408da6010e9ddd7b7c076e17d7d36ef749f1c90ad86f0c2d21ab9501c89d4637064dd82cccd
SSDEEP

98304:i/yvl5YBLjU8/cOT0MMHMMM6MMZMMMqo30MMHMMM6MMZMMMqaYMMHMMMvMMZMMMg:iQl5CXfQ1/ta5ed3334

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.b100124537037d118d3e413ed038c5c0.exe
- Size
  
  6.1MB
- MD5
  
  b100124537037d118d3e413ed038c5c0
- SHA1
  
  8e0d6f707615882950b23cda3454c417cf7daa6a
- SHA256
  
  66f55f409d4762c4c30ab82a992c42f323555e94401c04f375d07511093ec0d6
- SHA512
  
  fbfd499ad2a08cb7e5cf3edcf5af4b2a807403f0969eaa2509a42408da6010e9ddd7b7c076e17d7d36ef749f1c90ad86f0c2d21ab9501c89d4637064dd82cccd
- SSDEEP
  
  98304:i/yvl5YBLjU8/cOT0MMHMMM6MMZMMMqo30MMHMMM6MMZMMMqaYMMHMMMvMMZMMMg:iQl5CXfQ1/ta5ed3334
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2