4e8bb51940c06cca5ee3b6e90880ed21873a07f1866711f934ade6801f889c84 | Triage

Sharing

General

Target

3dfb1ecc969c07b44e47d0209d495b70_NEAS
Size

313KB
Sample

240507-md9wjaef33
MD5

3dfb1ecc969c07b44e47d0209d495b70
SHA1

a9fd911219080999dae8ba4c24f4356ad81d1460
SHA256

4e8bb51940c06cca5ee3b6e90880ed21873a07f1866711f934ade6801f889c84
SHA512

b72d8067e02b577198288caa42ba1a58e65ac1dadc1a69400b3a6a76c482c65c118d8a88b914d2d41b6838af1a8fe47b472653966c225b4311eaefda27457841
SSDEEP

6144:rGz/RNVwxc6aY2sNRgtUmKyIxLDXXoq9FJZCUmKyIxLX:r2RNVIt5m32XXf9Do3+

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  3dfb1ecc969c07b44e47d0209d495b70_NEAS
- Size
  
  313KB
- MD5
  
  3dfb1ecc969c07b44e47d0209d495b70
- SHA1
  
  a9fd911219080999dae8ba4c24f4356ad81d1460
- SHA256
  
  4e8bb51940c06cca5ee3b6e90880ed21873a07f1866711f934ade6801f889c84
- SHA512
  
  b72d8067e02b577198288caa42ba1a58e65ac1dadc1a69400b3a6a76c482c65c118d8a88b914d2d41b6838af1a8fe47b472653966c225b4311eaefda27457841
- SSDEEP
  
  6144:rGz/RNVwxc6aY2sNRgtUmKyIxLDXXoq9FJZCUmKyIxLX:r2RNVIt5m32XXf9Do3+
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2