763f09d16e7afbf0beeb9109aa98c013f94b5036bd562531ec2ff0bb2baaaf88 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

de6a61d90ac506b917b8149b1e397d20_NEAS
Size

427KB
Sample

240507-t5vz1shd35
MD5

de6a61d90ac506b917b8149b1e397d20
SHA1

1fd41c42f0b1ab52cebe33e0c1144702c644961d
SHA256

763f09d16e7afbf0beeb9109aa98c013f94b5036bd562531ec2ff0bb2baaaf88
SHA512

ceefdabf0aecdfcc260e0d39d22b350b9b31aa89b79779480e619ed7520f109b2aff453ea04b111f109d206885dad24921aa4a27654021095940be098bcdd854
SSDEEP

6144:gkewUqInOfzaSTYaT15f7o+STYaT15fAK8yfMx/D4LJZPlVcxqy1:gm/TYapJoTYapz8ye49vWq

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  de6a61d90ac506b917b8149b1e397d20_NEAS
- Size
  
  427KB
- MD5
  
  de6a61d90ac506b917b8149b1e397d20
- SHA1
  
  1fd41c42f0b1ab52cebe33e0c1144702c644961d
- SHA256
  
  763f09d16e7afbf0beeb9109aa98c013f94b5036bd562531ec2ff0bb2baaaf88
- SHA512
  
  ceefdabf0aecdfcc260e0d39d22b350b9b31aa89b79779480e619ed7520f109b2aff453ea04b111f109d206885dad24921aa4a27654021095940be098bcdd854
- SSDEEP
  
  6144:gkewUqInOfzaSTYaT15f7o+STYaT15fAK8yfMx/D4LJZPlVcxqy1:gm/TYapJoTYapz8ye49vWq
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2