8669457e89e769d5ebea6f2f6c2308a8ba9cf9d89ab43334aeea94f136a88aa0 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

NEAS.149355da69e5048deebaf6680e85bb90.exe
Size

350KB
Sample

231115-bh5ltshf92
MD5

149355da69e5048deebaf6680e85bb90
SHA1

5056efea079513626ee59d778496e513c1596fff
SHA256

8669457e89e769d5ebea6f2f6c2308a8ba9cf9d89ab43334aeea94f136a88aa0
SHA512

07c918973f1317dda4a6b8ac42404148c43bb5c39eaba4085d02de0a24fc9b34ad8806d064759ac86bdc9d4b0734c785a7749693dc9a83061cd7541a3e5c383e
SSDEEP

6144:PoB3dxc3KfaglVYNxsB+pREpqqBdSNNPSO+8y90Pz/Tr/LyY2i8AyW+uCarimksc:FmuWpqlNPSO+NGzLSZiHS

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.149355da69e5048deebaf6680e85bb90.exe
- Size
  
  350KB
- MD5
  
  149355da69e5048deebaf6680e85bb90
- SHA1
  
  5056efea079513626ee59d778496e513c1596fff
- SHA256
  
  8669457e89e769d5ebea6f2f6c2308a8ba9cf9d89ab43334aeea94f136a88aa0
- SHA512
  
  07c918973f1317dda4a6b8ac42404148c43bb5c39eaba4085d02de0a24fc9b34ad8806d064759ac86bdc9d4b0734c785a7749693dc9a83061cd7541a3e5c383e
- SSDEEP
  
  6144:PoB3dxc3KfaglVYNxsB+pREpqqBdSNNPSO+8y90Pz/Tr/LyY2i8AyW+uCarimksc:FmuWpqlNPSO+NGzLSZiHS
Score

8^/10

persistence
- Modifies AppInit DLL entries
  persistence
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2