29656d37ae60ecbaf6ae1553d09fe54807eecb9d3769f058ab49c1c2b5b20953 | Triage

Sharing

General

Target

NEAS.ac4640090e468b0711507d968b9a7841.exe
Size

84KB
Sample

231115-vhd9esea6t
MD5

ac4640090e468b0711507d968b9a7841
SHA1

ed91de778e80060ddbb53d92bd8d4e4ccd916581
SHA256

29656d37ae60ecbaf6ae1553d09fe54807eecb9d3769f058ab49c1c2b5b20953
SHA512

909b3c83b5f8d5036d3598b10e93cefe36587ed10bd348efbf4cd8a440d332fa2e4d233b4df58da28a100234fc2485e0adb1db0ff029c07bd567ffaa8b6c3c08
SSDEEP

1536:Z20E54QEuBHZ2P64abOTYzVcLRsnkDOLpu8ANZLvfPDyH6n8dEelLYR7xeGSmUmF:2b8PUi/sko+3PDyH6n8djlLYR7xr3

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.ac4640090e468b0711507d968b9a7841.exe
- Size
  
  84KB
- MD5
  
  ac4640090e468b0711507d968b9a7841
- SHA1
  
  ed91de778e80060ddbb53d92bd8d4e4ccd916581
- SHA256
  
  29656d37ae60ecbaf6ae1553d09fe54807eecb9d3769f058ab49c1c2b5b20953
- SHA512
  
  909b3c83b5f8d5036d3598b10e93cefe36587ed10bd348efbf4cd8a440d332fa2e4d233b4df58da28a100234fc2485e0adb1db0ff029c07bd567ffaa8b6c3c08
- SSDEEP
  
  1536:Z20E54QEuBHZ2P64abOTYzVcLRsnkDOLpu8ANZLvfPDyH6n8dEelLYR7xeGSmUmF:2b8PUi/sko+3PDyH6n8djlLYR7xr3
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2