539873657dd142cb112dcc03b2f8c70c28d2ca84f193d3fb46b350cb0a36a2e4 | Triage

Sharing

General

Target

NEAS.19088a5f0f0a627c7b6ce06a58af18b1.exe
Size

364KB
Sample

231116-vd18dsdd53
MD5

19088a5f0f0a627c7b6ce06a58af18b1
SHA1

f76f763a372d2e261a05fd813c95348b1d9b5806
SHA256

539873657dd142cb112dcc03b2f8c70c28d2ca84f193d3fb46b350cb0a36a2e4
SHA512

77a88c7efe03cfb08f218a1fc35a98c504d97a11ce35cb3eb85e3c51822eba6fee706a343cbe4393a4ce2eb3455c805529bdcc05fdafd16c86078bdccc8f9e06
SSDEEP

6144:ZwG4UYxLdCKgcuWjrQKgT5KgcuWjrQKg:ZwHUYxLH3j3

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.19088a5f0f0a627c7b6ce06a58af18b1.exe
- Size
  
  364KB
- MD5
  
  19088a5f0f0a627c7b6ce06a58af18b1
- SHA1
  
  f76f763a372d2e261a05fd813c95348b1d9b5806
- SHA256
  
  539873657dd142cb112dcc03b2f8c70c28d2ca84f193d3fb46b350cb0a36a2e4
- SHA512
  
  77a88c7efe03cfb08f218a1fc35a98c504d97a11ce35cb3eb85e3c51822eba6fee706a343cbe4393a4ce2eb3455c805529bdcc05fdafd16c86078bdccc8f9e06
- SSDEEP
  
  6144:ZwG4UYxLdCKgcuWjrQKgT5KgcuWjrQKg:ZwHUYxLH3j3
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2