5a4f55a11c1947f748475f1b0922b0cd6d3510435da21ea5df26e1a6fa398b68 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

NEAS.f3549eb675f9698b6c4996024546a340.exe
Size

138KB
Sample

231117-1b1fzafd8s
MD5

f3549eb675f9698b6c4996024546a340
SHA1

e01f3f4a507079125cde0918b8858be777db347b
SHA256

5a4f55a11c1947f748475f1b0922b0cd6d3510435da21ea5df26e1a6fa398b68
SHA512

8095c2cb4b66cc451ec1bd32443174fdb011a830ee8a94f93f5905788106b3aa0a7171bfc21fecbbeaabb8a43a0e9d7efaa586343a162432770d408a9e8f0e14
SSDEEP

3072:E0mUkHYB7VcItNJdnbx54uYkg3Me5GRIwRuYkg3Me5GFKcWBuYk5:pmUkHA/bx54hVEhVLBQ

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.f3549eb675f9698b6c4996024546a340.exe
- Size
  
  138KB
- MD5
  
  f3549eb675f9698b6c4996024546a340
- SHA1
  
  e01f3f4a507079125cde0918b8858be777db347b
- SHA256
  
  5a4f55a11c1947f748475f1b0922b0cd6d3510435da21ea5df26e1a6fa398b68
- SHA512
  
  8095c2cb4b66cc451ec1bd32443174fdb011a830ee8a94f93f5905788106b3aa0a7171bfc21fecbbeaabb8a43a0e9d7efaa586343a162432770d408a9e8f0e14
- SSDEEP
  
  3072:E0mUkHYB7VcItNJdnbx54uYkg3Me5GRIwRuYkg3Me5GFKcWBuYk5:pmUkHA/bx54hVEhVLBQ
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2