0f69fe6ed0e0c40d069419e02692220a3108bd025012b8266a1699a6c612d3e4 | Triage

Sharing

General

Target

NEAS.39734c3c61ffbc2d1973c4dab3590a00.exe
Size

456KB
Sample

231117-xgtzladh4z
MD5

39734c3c61ffbc2d1973c4dab3590a00
SHA1

4d8717adc870c316eaac284ac118d0e6bc801a02
SHA256

0f69fe6ed0e0c40d069419e02692220a3108bd025012b8266a1699a6c612d3e4
SHA512

2161e0ec403e8d52e16e2554224316c7f085b91eb71bf6dd2f92eda9d8f36e9d1363f0afdb4ab4a35aa45d240f3c62eda0ea466fd3469cb602c2253f7e1b16b3
SSDEEP

6144:XrNOpVzjx3PblNT268M2/KOuFPHx3PblNT261La/cKlYBsSAx3PblNT268M2/KO+:X5OxfchuPfVLRe3fchuPf

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.39734c3c61ffbc2d1973c4dab3590a00.exe
- Size
  
  456KB
- MD5
  
  39734c3c61ffbc2d1973c4dab3590a00
- SHA1
  
  4d8717adc870c316eaac284ac118d0e6bc801a02
- SHA256
  
  0f69fe6ed0e0c40d069419e02692220a3108bd025012b8266a1699a6c612d3e4
- SHA512
  
  2161e0ec403e8d52e16e2554224316c7f085b91eb71bf6dd2f92eda9d8f36e9d1363f0afdb4ab4a35aa45d240f3c62eda0ea466fd3469cb602c2253f7e1b16b3
- SSDEEP
  
  6144:XrNOpVzjx3PblNT268M2/KOuFPHx3PblNT261La/cKlYBsSAx3PblNT268M2/KO+:X5OxfchuPfVLRe3fchuPf
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2