76935da7464751593f9eedfe3648b0d18e84b4a516a656c648e8d5f27493f0cb | Triage

Sharing

Copy URL Twitter E-mail

General

Target

NEAS.2f8b40278f733e7784888cf9f8727530.exe
Size

1.5MB
Sample

231117-wz9bkade5v
MD5

2f8b40278f733e7784888cf9f8727530
SHA1

3e1d8d78b8e724e0cb69c082f0a0938ee3b26e14
SHA256

76935da7464751593f9eedfe3648b0d18e84b4a516a656c648e8d5f27493f0cb
SHA512

bbd09499536678d2f4cec2b08cf3dbe0570f71e5d5c8dba1f10e789519d934497f55da46558a2d1db2babf9cf574191c1783f260bf39c4f49f8864a8159d6237
SSDEEP

24576:PNHx6Q2xZmk6Ux6Q2xlPh2kkkkK4kXkkkkkkkkhLX3a20R0v50+YNpsKv2EvZHpz:PN0lmkIhbazR0vKLXZ

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.2f8b40278f733e7784888cf9f8727530.exe
- Size
  
  1.5MB
- MD5
  
  2f8b40278f733e7784888cf9f8727530
- SHA1
  
  3e1d8d78b8e724e0cb69c082f0a0938ee3b26e14
- SHA256
  
  76935da7464751593f9eedfe3648b0d18e84b4a516a656c648e8d5f27493f0cb
- SHA512
  
  bbd09499536678d2f4cec2b08cf3dbe0570f71e5d5c8dba1f10e789519d934497f55da46558a2d1db2babf9cf574191c1783f260bf39c4f49f8864a8159d6237
- SSDEEP
  
  24576:PNHx6Q2xZmk6Ux6Q2xlPh2kkkkK4kXkkkkkkkkhLX3a20R0v50+YNpsKv2EvZHpz:PN0lmkIhbazR0vKLXZ
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2