7f5e6b6d6c266e77a718e766f60f14b64edff3dce200dccbee8f6a19a0d1a5ac | Triage

Sharing

Copy URL Twitter E-mail

General

Target

NEAS.a936c7ed9ac4a467a0593b0fff2f444a.exe
Size

71KB
Sample

231114-mf2b6sca26
MD5

a936c7ed9ac4a467a0593b0fff2f444a
SHA1

e34f0e954b8595a8be3ea6ad5fc7d9fcf6d499fa
SHA256

7f5e6b6d6c266e77a718e766f60f14b64edff3dce200dccbee8f6a19a0d1a5ac
SHA512

3c3d4ece109308670c5e3056ad827b12379c329dd80dc1d4568a50774750adb835b3a35d80909a8fd8c1774c7c98d4906270009e29b717b42a278a2cb3ce4fef
SSDEEP

1536:tagXGLN3AOpjmWMoJLIAL+gIL7juF5066/OaRQiQK1P+ATT:taTJBpjmWMcKgI7u16/Oae+P+A3

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.a936c7ed9ac4a467a0593b0fff2f444a.exe
- Size
  
  71KB
- MD5
  
  a936c7ed9ac4a467a0593b0fff2f444a
- SHA1
  
  e34f0e954b8595a8be3ea6ad5fc7d9fcf6d499fa
- SHA256
  
  7f5e6b6d6c266e77a718e766f60f14b64edff3dce200dccbee8f6a19a0d1a5ac
- SHA512
  
  3c3d4ece109308670c5e3056ad827b12379c329dd80dc1d4568a50774750adb835b3a35d80909a8fd8c1774c7c98d4906270009e29b717b42a278a2cb3ce4fef
- SSDEEP
  
  1536:tagXGLN3AOpjmWMoJLIAL+gIL7juF5066/OaRQiQK1P+ATT:taTJBpjmWMcKgI7u16/Oae+P+A3
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2