0480bb64c210973f2d76f8d51922e50758d074183ddf670d022386125049435f | Triage

Sharing

General

Target

NEAS.07cba9992ea9b50748a53fe0dbba4b35.exe
Size

176KB
Sample

231116-ws9nraee58
MD5

07cba9992ea9b50748a53fe0dbba4b35
SHA1

d4063bab2da744cb9c6c778d149e8776b3211189
SHA256

0480bb64c210973f2d76f8d51922e50758d074183ddf670d022386125049435f
SHA512

f36790cf91b12ac4925f80f13e1d6e5d539a2b1740c296f630d936fde26cf6fcf5e84af01268f974b2f30de5e5a0f5938d7d32cd4617d766484adbef2dbbd816
SSDEEP

3072:VtXmDyxaJ36se/nIcqIOOJF4EISi/i4gG4nTxGkIs6:Vk+QJ3de/Icl4yjTAkO

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.07cba9992ea9b50748a53fe0dbba4b35.exe
- Size
  
  176KB
- MD5
  
  07cba9992ea9b50748a53fe0dbba4b35
- SHA1
  
  d4063bab2da744cb9c6c778d149e8776b3211189
- SHA256
  
  0480bb64c210973f2d76f8d51922e50758d074183ddf670d022386125049435f
- SHA512
  
  f36790cf91b12ac4925f80f13e1d6e5d539a2b1740c296f630d936fde26cf6fcf5e84af01268f974b2f30de5e5a0f5938d7d32cd4617d766484adbef2dbbd816
- SSDEEP
  
  3072:VtXmDyxaJ36se/nIcqIOOJF4EISi/i4gG4nTxGkIs6:Vk+QJ3de/Icl4yjTAkO
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2