57e6a55c7d12ed10a5beaa9e9ebcec65cb719a904ee903a62ed6e56417e29b80 | Triage

Sharing

General

Target

NEAS.4987706d2a1512c3375ee0569bc95230.exe
Size

1.7MB
Sample

231117-w1fqmscd68
MD5

4987706d2a1512c3375ee0569bc95230
SHA1

28abf6a59a3ede44cd38f6d430f32f582d1829c7
SHA256

57e6a55c7d12ed10a5beaa9e9ebcec65cb719a904ee903a62ed6e56417e29b80
SHA512

5725b15ef1166e261f7395a2c045b1fa7d7e0abfa1d70d19d2ae2ba3dc98969b098a625a589b32f9d8044c487ff53b14a5477a39c774f113ef96b4886c32bfa8
SSDEEP

49152:P6ix7/ix7nbdix7/ix7+iix7/ix7nbdix7/ix7:CU/UnbdU/U+iU/UnbdU/U

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.4987706d2a1512c3375ee0569bc95230.exe
- Size
  
  1.7MB
- MD5
  
  4987706d2a1512c3375ee0569bc95230
- SHA1
  
  28abf6a59a3ede44cd38f6d430f32f582d1829c7
- SHA256
  
  57e6a55c7d12ed10a5beaa9e9ebcec65cb719a904ee903a62ed6e56417e29b80
- SHA512
  
  5725b15ef1166e261f7395a2c045b1fa7d7e0abfa1d70d19d2ae2ba3dc98969b098a625a589b32f9d8044c487ff53b14a5477a39c774f113ef96b4886c32bfa8
- SSDEEP
  
  49152:P6ix7/ix7nbdix7/ix7+iix7/ix7nbdix7/ix7:CU/UnbdU/U+iU/UnbdU/U
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2