1373ca26b9b19edad1196cddb7d2a819a2f3903d11be44040a6d476f43209ebd | Triage

Sharing

General

Target

NEAS.15afc49711fbc579757c55b56aa011d0.exe
Size

5.7MB
Sample

231115-bgkj9shf72
MD5

15afc49711fbc579757c55b56aa011d0
SHA1

885862fc619c41d6870a4e43433331acbc135aa6
SHA256

1373ca26b9b19edad1196cddb7d2a819a2f3903d11be44040a6d476f43209ebd
SHA512

0c56324c9e75af8cf16e007c21ceb28a546d6e2beeb6096ac2b17d9e8f0dd2fe6326744d3cdf201e7c73c1139949f2d8ac304c1bebb895022dfb11ff028cf34c
SSDEEP

49152:QR6Gn9646KI6BbazR0vKLXZv91bazR0vKLXZ+baU:QR6Gn9646r6VatuKLXZnatuKLXZqaU

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.15afc49711fbc579757c55b56aa011d0.exe
- Size
  
  5.7MB
- MD5
  
  15afc49711fbc579757c55b56aa011d0
- SHA1
  
  885862fc619c41d6870a4e43433331acbc135aa6
- SHA256
  
  1373ca26b9b19edad1196cddb7d2a819a2f3903d11be44040a6d476f43209ebd
- SHA512
  
  0c56324c9e75af8cf16e007c21ceb28a546d6e2beeb6096ac2b17d9e8f0dd2fe6326744d3cdf201e7c73c1139949f2d8ac304c1bebb895022dfb11ff028cf34c
- SSDEEP
  
  49152:QR6Gn9646KI6BbazR0vKLXZv91bazR0vKLXZ+baU:QR6Gn9646r6VatuKLXZnatuKLXZqaU
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2