32d11e8f9c2ae10bc0f26dfe3849253325b02ee78cc7199a7c20e338ccd441bf | Triage

Sharing

Copy URL Twitter E-mail

General

Target

3eccfae973cddf3e35d5f62aa6ce6d70_NEAS
Size

78KB
Sample

240507-mfwrpaeg27
MD5

3eccfae973cddf3e35d5f62aa6ce6d70
SHA1

a8c9f5c9ba9feffb536bc67683f9de5eb2d7fb8d
SHA256

32d11e8f9c2ae10bc0f26dfe3849253325b02ee78cc7199a7c20e338ccd441bf
SHA512

156bd8dbdc925f0b589ee1f7331024c2738f24bf722395c11fb293a787720dc355fdf86c728a023f0587eb30a50083f6c0086ca89804432db83046d220383d6a
SSDEEP

768:IYb7zwr4lb3KXd51RrsLK1zcSLh1N1yk267PgpMl8qHWCWjzIKe+CEBL+N2EntsZ:IIKXZRrHb2CBsiVfN+zL20gJi1ie

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  3eccfae973cddf3e35d5f62aa6ce6d70_NEAS
- Size
  
  78KB
- MD5
  
  3eccfae973cddf3e35d5f62aa6ce6d70
- SHA1
  
  a8c9f5c9ba9feffb536bc67683f9de5eb2d7fb8d
- SHA256
  
  32d11e8f9c2ae10bc0f26dfe3849253325b02ee78cc7199a7c20e338ccd441bf
- SHA512
  
  156bd8dbdc925f0b589ee1f7331024c2738f24bf722395c11fb293a787720dc355fdf86c728a023f0587eb30a50083f6c0086ca89804432db83046d220383d6a
- SSDEEP
  
  768:IYb7zwr4lb3KXd51RrsLK1zcSLh1N1yk267PgpMl8qHWCWjzIKe+CEBL+N2EntsZ:IIKXZRrHb2CBsiVfN+zL20gJi1ie
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2