603e1d68e7afdceb91f86066b06101dc67374c29e5bf973d29242878cd412afe | Triage

Sharing

General

Target

NEAS.f487f3992fe59a3e19d56f5c4936e8b0.exe
Size

56KB
Sample

231115-kh5q9sgd3s
MD5

f487f3992fe59a3e19d56f5c4936e8b0
SHA1

2dd27440008a5aa51bceb1c967f8a77535180e28
SHA256

603e1d68e7afdceb91f86066b06101dc67374c29e5bf973d29242878cd412afe
SHA512

32b84ab830d84cea92c4d16ac1c419ef48370750470d643f31bea047c31890551c69290eb5189bcdfe9d1870dcc3cf4793f7b18b1e2e92023b0a448f754bf6e0
SSDEEP

1536:+kFbk5BoYFUOnUevNMTNn4gFTk57TV8Wcjggyi:+kbYwsNIniBoggyi

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.f487f3992fe59a3e19d56f5c4936e8b0.exe
- Size
  
  56KB
- MD5
  
  f487f3992fe59a3e19d56f5c4936e8b0
- SHA1
  
  2dd27440008a5aa51bceb1c967f8a77535180e28
- SHA256
  
  603e1d68e7afdceb91f86066b06101dc67374c29e5bf973d29242878cd412afe
- SHA512
  
  32b84ab830d84cea92c4d16ac1c419ef48370750470d643f31bea047c31890551c69290eb5189bcdfe9d1870dcc3cf4793f7b18b1e2e92023b0a448f754bf6e0
- SSDEEP
  
  1536:+kFbk5BoYFUOnUevNMTNn4gFTk57TV8Wcjggyi:+kbYwsNIniBoggyi
Score

8^/10

persistence
- Modifies Installed Components in the registry
  persistence
- Deletes itself
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2