a334a0d5e8deef7c8cc5fbc25ac7a41d7f70650412d262b75aceb6c449784b5c | Triage

Sharing

Copy URL Twitter E-mail

General

Target

NEAS.1774d990857e755abfd5c39a15f3b82f.exe
Size

285KB
Sample

231114-k4cydaag65
MD5

1774d990857e755abfd5c39a15f3b82f
SHA1

e77d54c45a10fd88f7c0f9873716e566f5b56182
SHA256

a334a0d5e8deef7c8cc5fbc25ac7a41d7f70650412d262b75aceb6c449784b5c
SHA512

37499971633adc0377c7be481bd25c182e7ab79b932a5e9730d9efaf81475fca016cec9d3ced41be3db8bff1e62ff05f516d9567657162578cde514e79d89441
SSDEEP

3072:JoPg0Te9uttl8z6p3GDQeyKVcbMloVRr3uMg0kAqSxYiJ2QM4GKch:J449Vz6pQryKQIoi7tWa

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.1774d990857e755abfd5c39a15f3b82f.exe
- Size
  
  285KB
- MD5
  
  1774d990857e755abfd5c39a15f3b82f
- SHA1
  
  e77d54c45a10fd88f7c0f9873716e566f5b56182
- SHA256
  
  a334a0d5e8deef7c8cc5fbc25ac7a41d7f70650412d262b75aceb6c449784b5c
- SHA512
  
  37499971633adc0377c7be481bd25c182e7ab79b932a5e9730d9efaf81475fca016cec9d3ced41be3db8bff1e62ff05f516d9567657162578cde514e79d89441
- SSDEEP
  
  3072:JoPg0Te9uttl8z6p3GDQeyKVcbMloVRr3uMg0kAqSxYiJ2QM4GKch:J449Vz6pQryKQIoi7tWa
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2