f4bfd4b31adc45adee364700f5fa87fe6038f877e72459a054867734d2def838 | Triage

Sharing

General

Target

a744c217d1ffd9ea845b7e00684ef5c0_NEAS
Size

128KB
Sample

240507-qynetahh2x
MD5

a744c217d1ffd9ea845b7e00684ef5c0
SHA1

f0cd3897e2db38750615eb0ef2e971ddf6ac3994
SHA256

f4bfd4b31adc45adee364700f5fa87fe6038f877e72459a054867734d2def838
SHA512

3529ba3e207ac7dbfd399ee7141c03c997af0735162c4cc2a6cad2382393443791dbc079f97af1402778839cece211f4be540e5597f5aca0cebf0103766b0ef7
SSDEEP

3072:ue/KbDiQZOznwYKbeA9pui6yYPaI7DehizrVtNq:pELZOznwYKiypui6yYPaIGcs

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  a744c217d1ffd9ea845b7e00684ef5c0_NEAS
- Size
  
  128KB
- MD5
  
  a744c217d1ffd9ea845b7e00684ef5c0
- SHA1
  
  f0cd3897e2db38750615eb0ef2e971ddf6ac3994
- SHA256
  
  f4bfd4b31adc45adee364700f5fa87fe6038f877e72459a054867734d2def838
- SHA512
  
  3529ba3e207ac7dbfd399ee7141c03c997af0735162c4cc2a6cad2382393443791dbc079f97af1402778839cece211f4be540e5597f5aca0cebf0103766b0ef7
- SSDEEP
  
  3072:ue/KbDiQZOznwYKbeA9pui6yYPaI7DehizrVtNq:pELZOznwYKiypui6yYPaIGcs
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2