828d0b28eb2477aebe719fe8ea1de575ca943e2a72b4c4b4b5a8ff21819dd9b6 | Triage

Sharing

General

Target

NEAS.1be4b0da70aa48fb6d8cb74019083fa0.exe
Size

1.9MB
Sample

231117-x77y5sdb77
MD5

1be4b0da70aa48fb6d8cb74019083fa0
SHA1

068b0ab71f0e149cbf39b215274b1848f2b199d4
SHA256

828d0b28eb2477aebe719fe8ea1de575ca943e2a72b4c4b4b5a8ff21819dd9b6
SHA512

204841757fa93a60f3e277ad06b8f046036b5b71fa9ce3a2b4b4506afa5d198ce0c0df33ee37da0e7a639d6028a77ecdb756b4f5165662bf62f65ea088951b50
SSDEEP

24576:md6RNIVyeNIVy2jULWNIVyeNIVy2jUdKYKpRNIVyeNIVy2jULWNIVyeNIVy2jUO:md6UyjSyj0ryjSyjH

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.1be4b0da70aa48fb6d8cb74019083fa0.exe
- Size
  
  1.9MB
- MD5
  
  1be4b0da70aa48fb6d8cb74019083fa0
- SHA1
  
  068b0ab71f0e149cbf39b215274b1848f2b199d4
- SHA256
  
  828d0b28eb2477aebe719fe8ea1de575ca943e2a72b4c4b4b5a8ff21819dd9b6
- SHA512
  
  204841757fa93a60f3e277ad06b8f046036b5b71fa9ce3a2b4b4506afa5d198ce0c0df33ee37da0e7a639d6028a77ecdb756b4f5165662bf62f65ea088951b50
- SSDEEP
  
  24576:md6RNIVyeNIVy2jULWNIVyeNIVy2jUdKYKpRNIVyeNIVy2jULWNIVyeNIVy2jUO:md6UyjSyj0ryjSyjH
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2