d27fd26816dba365516310d3031a1dfea9634171aa03c62bab65224c75a69e5f | Triage

Sharing

Copy URL Twitter E-mail

General

Target

NEAS.a43927890815682e4fa125079b31bfbf.exe
Size

464KB
Sample

231116-w5hqssef58
MD5

a43927890815682e4fa125079b31bfbf
SHA1

f7bf1007fe0cccc015e5b1e2be63933c3138ed98
SHA256

d27fd26816dba365516310d3031a1dfea9634171aa03c62bab65224c75a69e5f
SHA512

9883479f2fcdd6c5f0317fc4cc602664646b182ba911db5be2057bb5417a01ccfe40d145c4e66c569f1c8728c4171a47d235069e02e233ea7580fe30fa5088ba
SSDEEP

6144:1ibXdgEOIIIPCn4EOIuIPJEOOcHTETKEOIIIPC:1ibGEVI2C4EVu2JEVcBEVI2C

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.a43927890815682e4fa125079b31bfbf.exe
- Size
  
  464KB
- MD5
  
  a43927890815682e4fa125079b31bfbf
- SHA1
  
  f7bf1007fe0cccc015e5b1e2be63933c3138ed98
- SHA256
  
  d27fd26816dba365516310d3031a1dfea9634171aa03c62bab65224c75a69e5f
- SHA512
  
  9883479f2fcdd6c5f0317fc4cc602664646b182ba911db5be2057bb5417a01ccfe40d145c4e66c569f1c8728c4171a47d235069e02e233ea7580fe30fa5088ba
- SSDEEP
  
  6144:1ibXdgEOIIIPCn4EOIuIPJEOOcHTETKEOIIIPC:1ibGEVI2C4EVu2JEVcBEVI2C
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2