5e311e6c79329fe61ea5f6694e9127746670164499a1d98a5c3a6159d70c0efc | Triage

Sharing

General

Target

NEAS.b909ae1463b08658c5f929e690bbac90.exe
Size

59KB
Sample

231115-bvm8babb5s
MD5

b909ae1463b08658c5f929e690bbac90
SHA1

b9b4563c8f73989478e66c2cf82369b4f5eb418e
SHA256

5e311e6c79329fe61ea5f6694e9127746670164499a1d98a5c3a6159d70c0efc
SHA512

4d02810d5de56eb111f1a4bafe88fabe9d96289cc6bce89513b927736cdac33acf212f301fbc4e4aa9a70851500231726f01790ea480244336968ce61ed9bf2a
SSDEEP

1536:NJYrpUwAnPa5MXhridDAH/V68jpflsss0oTT24NCyVso:N/CaXhOdDAHRtfcP23eso

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.b909ae1463b08658c5f929e690bbac90.exe
- Size
  
  59KB
- MD5
  
  b909ae1463b08658c5f929e690bbac90
- SHA1
  
  b9b4563c8f73989478e66c2cf82369b4f5eb418e
- SHA256
  
  5e311e6c79329fe61ea5f6694e9127746670164499a1d98a5c3a6159d70c0efc
- SHA512
  
  4d02810d5de56eb111f1a4bafe88fabe9d96289cc6bce89513b927736cdac33acf212f301fbc4e4aa9a70851500231726f01790ea480244336968ce61ed9bf2a
- SSDEEP
  
  1536:NJYrpUwAnPa5MXhridDAH/V68jpflsss0oTT24NCyVso:N/CaXhOdDAHRtfcP23eso
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2