0cfcf8c3155e2d93ba4ae4bf3cd2fcce309c095bb0c60cfe55c6ec8e058d5688 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

NEAS.2594bf7c3b6f740d126208d7775d3b10.exe
Size

128KB
Sample

231014-wdp1ssac53
MD5

2594bf7c3b6f740d126208d7775d3b10
SHA1

9b6b700b19787298f1223281bdc2c917993b015f
SHA256

0cfcf8c3155e2d93ba4ae4bf3cd2fcce309c095bb0c60cfe55c6ec8e058d5688
SHA512

68b4236f48e9db1be286d50b2a5f03b208b7c85a74f1e87b269d1c532dae83a15e84eaf00a94347217aa4b0a36852de3dee57536555f16adfa2d49b7ae2011ad
SSDEEP

1536:5XmJSP6geJGd0jNrzt1wV2pfQxjGDYMjUH9nouy8O6Nuf51TQmQM22OwU:5dP6LJNNzrqNcYM2FoutkTy2o

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.2594bf7c3b6f740d126208d7775d3b10.exe
- Size
  
  128KB
- MD5
  
  2594bf7c3b6f740d126208d7775d3b10
- SHA1
  
  9b6b700b19787298f1223281bdc2c917993b015f
- SHA256
  
  0cfcf8c3155e2d93ba4ae4bf3cd2fcce309c095bb0c60cfe55c6ec8e058d5688
- SHA512
  
  68b4236f48e9db1be286d50b2a5f03b208b7c85a74f1e87b269d1c532dae83a15e84eaf00a94347217aa4b0a36852de3dee57536555f16adfa2d49b7ae2011ad
- SSDEEP
  
  1536:5XmJSP6geJGd0jNrzt1wV2pfQxjGDYMjUH9nouy8O6Nuf51TQmQM22OwU:5dP6LJNNzrqNcYM2FoutkTy2o
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2