7d6448dd8724411c67ca783b1422abfd0c7a8481219253e46fbe275c0bc8f246 | Triage

Sharing

General

Target

NEAS.b44b4e3ebdf818a5bb94c69b73f9f100.exe
Size

315KB
Sample

231118-f8yy7abg76
MD5

b44b4e3ebdf818a5bb94c69b73f9f100
SHA1

7c597f8e9c3f1de3471c3f8334ee13b596084928
SHA256

7d6448dd8724411c67ca783b1422abfd0c7a8481219253e46fbe275c0bc8f246
SHA512

6b8d3eaa43b76c4d7604cff379bd53784feab7a3efa4ada4c761e0148805aa7610d16fa04b1017974d41aef343a61d3eedddd76b4822ad07c1357e5e5a45c2c7
SSDEEP

3072:q5dwSx0rIp1iUVtq749+f4auvZ7LC4ZR4mqmnKBstqBiPXPAPePdfVQ:q5dwwlVtqI+stesMmG

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.b44b4e3ebdf818a5bb94c69b73f9f100.exe
- Size
  
  315KB
- MD5
  
  b44b4e3ebdf818a5bb94c69b73f9f100
- SHA1
  
  7c597f8e9c3f1de3471c3f8334ee13b596084928
- SHA256
  
  7d6448dd8724411c67ca783b1422abfd0c7a8481219253e46fbe275c0bc8f246
- SHA512
  
  6b8d3eaa43b76c4d7604cff379bd53784feab7a3efa4ada4c761e0148805aa7610d16fa04b1017974d41aef343a61d3eedddd76b4822ad07c1357e5e5a45c2c7
- SSDEEP
  
  3072:q5dwSx0rIp1iUVtq749+f4auvZ7LC4ZR4mqmnKBstqBiPXPAPePdfVQ:q5dwwlVtqI+stesMmG
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2