043403722b979b04bbba86d074ebc479775e00aa5b2d784485579f85bb05fb3f | Triage

Sharing

General

Target

NEAS.8b2d603e74b9ad0d03499dcc76bb6fd0.exe
Size

137KB
Sample

231115-b4grwsaa97
MD5

8b2d603e74b9ad0d03499dcc76bb6fd0
SHA1

687be615e68a0e3c9b3aef7a8e3221caffcd0292
SHA256

043403722b979b04bbba86d074ebc479775e00aa5b2d784485579f85bb05fb3f
SHA512

086b69de56333bf01c0eacb9ef0a818129c31bb4f88ce36c96e13dd35230d1c6c0b4d1e866c537ec507fdad747dec0518989c3a1ae1218f0a8a826c0d963f433
SSDEEP

3072:+m1/mS7+mI+N9khVJSXw9As+G8izV1beXdKBQzL2gM5Vc:hPLI6WVJSA9Af4zVkXI5x8

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.8b2d603e74b9ad0d03499dcc76bb6fd0.exe
- Size
  
  137KB
- MD5
  
  8b2d603e74b9ad0d03499dcc76bb6fd0
- SHA1
  
  687be615e68a0e3c9b3aef7a8e3221caffcd0292
- SHA256
  
  043403722b979b04bbba86d074ebc479775e00aa5b2d784485579f85bb05fb3f
- SHA512
  
  086b69de56333bf01c0eacb9ef0a818129c31bb4f88ce36c96e13dd35230d1c6c0b4d1e866c537ec507fdad747dec0518989c3a1ae1218f0a8a826c0d963f433
- SSDEEP
  
  3072:+m1/mS7+mI+N9khVJSXw9As+G8izV1beXdKBQzL2gM5Vc:hPLI6WVJSA9Af4zVkXI5x8
Score

8^/10

persistence
- Modifies AppInit DLL entries
  persistence
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2