0dfd05cfb5c9e52a009d15f7dec2eefbd2f357e1293bf3f7ab52f4a50c83c87e | Triage

Sharing

Copy URL Twitter E-mail

General

Target

NEAS.657bdcf01dc1f1af5d08d5604095fbf0.exe
Size

93KB
Sample

231014-wjrftabc7z
MD5

657bdcf01dc1f1af5d08d5604095fbf0
SHA1

90c7f71f31ba03b40f3dc5f2d32d2c0fc8060fa9
SHA256

0dfd05cfb5c9e52a009d15f7dec2eefbd2f357e1293bf3f7ab52f4a50c83c87e
SHA512

e04e16ac0314dcce50b09c8279a7b5d6503450fc86e36bff3400799b1376af3ed306a29ed81cb7ff4de30c1c5b88d239def37f121547e202489960f15b660257
SSDEEP

1536:cGpHweYjUQ0A6vaRz9jH8R7gHxAun1CZw/BoJhzDDkZTDnjiwg58:cGKxgQ0zvCzHmun4Zw/yDDOjY58

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.657bdcf01dc1f1af5d08d5604095fbf0.exe
- Size
  
  93KB
- MD5
  
  657bdcf01dc1f1af5d08d5604095fbf0
- SHA1
  
  90c7f71f31ba03b40f3dc5f2d32d2c0fc8060fa9
- SHA256
  
  0dfd05cfb5c9e52a009d15f7dec2eefbd2f357e1293bf3f7ab52f4a50c83c87e
- SHA512
  
  e04e16ac0314dcce50b09c8279a7b5d6503450fc86e36bff3400799b1376af3ed306a29ed81cb7ff4de30c1c5b88d239def37f121547e202489960f15b660257
- SSDEEP
  
  1536:cGpHweYjUQ0A6vaRz9jH8R7gHxAun1CZw/BoJhzDDkZTDnjiwg58:cGKxgQ0zvCzHmun4Zw/yDDOjY58
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2