765b8f7ebca13e81573efe9d9a32697a37355bc00073d757ffe935272ab5b37a | Triage

Sharing

Copy URL Twitter E-mail

General

Target

3f3646b7acc5f61d307a6af6e33ba840_NEAS
Size

112KB
Sample

240507-mgke2seg49
MD5

3f3646b7acc5f61d307a6af6e33ba840
SHA1

a6ba3e63033d7dffdb5e0cd2f2f8d3f6fc729ec4
SHA256

765b8f7ebca13e81573efe9d9a32697a37355bc00073d757ffe935272ab5b37a
SHA512

e0eb471fe201bf192aa2e1a7a8b56fac120f7a157a7434b4e10ebf84b5c14ae71d7eee0ad382e3ee38879885d5412fc7cbd723b0e5c850c882d96b241defa7a4
SSDEEP

1536:q0sGxm2ynu1z/BtMbCCfpp1ATUyh5KHcquZikRynlypv8LIuCseNIQ:q0se1nMVfKUyh3quZ+lc802eSQ

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  3f3646b7acc5f61d307a6af6e33ba840_NEAS
- Size
  
  112KB
- MD5
  
  3f3646b7acc5f61d307a6af6e33ba840
- SHA1
  
  a6ba3e63033d7dffdb5e0cd2f2f8d3f6fc729ec4
- SHA256
  
  765b8f7ebca13e81573efe9d9a32697a37355bc00073d757ffe935272ab5b37a
- SHA512
  
  e0eb471fe201bf192aa2e1a7a8b56fac120f7a157a7434b4e10ebf84b5c14ae71d7eee0ad382e3ee38879885d5412fc7cbd723b0e5c850c882d96b241defa7a4
- SSDEEP
  
  1536:q0sGxm2ynu1z/BtMbCCfpp1ATUyh5KHcquZikRynlypv8LIuCseNIQ:q0se1nMVfKUyh3quZ+lc802eSQ
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2