0109632d6f6223f3d7f078c5fa45385d158f657f7ccf0a0274dbfa4974409e81 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

NEAS.f730c7eeac26b6b066cd42711f237c30.exe
Size

364KB
Sample

231117-afm4bsdb6x
MD5

f730c7eeac26b6b066cd42711f237c30
SHA1

2acdc5d00ebaf9d420f6d38eea11aa802042083d
SHA256

0109632d6f6223f3d7f078c5fa45385d158f657f7ccf0a0274dbfa4974409e81
SHA512

b7f9997baf3d578434f9fb0c016238ad9579378aaf7fb0cc0248781bbf432519d8e0bc479374466ebf50bcfae18b9f36f61aea0c0f0b60100e18dd798867f0ce
SSDEEP

6144:OsebsnlD/dLPkuC1snlD8swSrsnlD/dLPkuC1snlD:1BnlLtrPnlPsnlLtrPnl

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.f730c7eeac26b6b066cd42711f237c30.exe
- Size
  
  364KB
- MD5
  
  f730c7eeac26b6b066cd42711f237c30
- SHA1
  
  2acdc5d00ebaf9d420f6d38eea11aa802042083d
- SHA256
  
  0109632d6f6223f3d7f078c5fa45385d158f657f7ccf0a0274dbfa4974409e81
- SHA512
  
  b7f9997baf3d578434f9fb0c016238ad9579378aaf7fb0cc0248781bbf432519d8e0bc479374466ebf50bcfae18b9f36f61aea0c0f0b60100e18dd798867f0ce
- SSDEEP
  
  6144:OsebsnlD/dLPkuC1snlD8swSrsnlD/dLPkuC1snlD:1BnlLtrPnlPsnlLtrPnl
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2