0e1efa43381de1355c8c464de26cbf0d16e86c739daefa31abba85ee0d2ee16c | Triage

Sharing

General

Target

NEAS.ee90ee784582190110ebcc0dcf008f80.exe
Size

300KB
Sample

231014-j9hkdaca88
MD5

ee90ee784582190110ebcc0dcf008f80
SHA1

3b4a09c07c544560ee5f1272c88d68fd152f5da7
SHA256

0e1efa43381de1355c8c464de26cbf0d16e86c739daefa31abba85ee0d2ee16c
SHA512

6885f80cc368e0b50a48f93a3be414b2acbfca7c758b0f437038dcbeedd2c5d0cedf94e25ba562118ec58482752fc660ab4812cef96e9b9630455e50497230ed
SSDEEP

6144:vFej0qufhcmoZjwszeXmr8SeNpgdyuH1l+/Wd:v1ymCjb87g4/c

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.ee90ee784582190110ebcc0dcf008f80.exe
- Size
  
  300KB
- MD5
  
  ee90ee784582190110ebcc0dcf008f80
- SHA1
  
  3b4a09c07c544560ee5f1272c88d68fd152f5da7
- SHA256
  
  0e1efa43381de1355c8c464de26cbf0d16e86c739daefa31abba85ee0d2ee16c
- SHA512
  
  6885f80cc368e0b50a48f93a3be414b2acbfca7c758b0f437038dcbeedd2c5d0cedf94e25ba562118ec58482752fc660ab4812cef96e9b9630455e50497230ed
- SSDEEP
  
  6144:vFej0qufhcmoZjwszeXmr8SeNpgdyuH1l+/Wd:v1ymCjb87g4/c
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2