cfe9f3b76667bc2ad8d356cd9e042be749a0261491be8aff3103c8a102e4549e | Triage

Sharing

General

Target

NEAS.b41426526b5706d3cc49ab13cf0fbe30.exe
Size

360KB
Sample

231014-xt6txsgh46
MD5

b41426526b5706d3cc49ab13cf0fbe30
SHA1

15fa233a6978d3c337c81b35c30135932f6c0bbd
SHA256

cfe9f3b76667bc2ad8d356cd9e042be749a0261491be8aff3103c8a102e4549e
SHA512

9e809d06b64812228a7878b836c98da7d2e3482f276cbb4768d46a988331f3a1453cdc708e58391d0b96b751d71ee6593e0b97b3d61c195e6333f58759918c31
SSDEEP

6144:DcgrhX+2CpX2/mnbzvdLaD6OkPgl6bmIjlQFxU:DvRCpXImbzQD6OkPgl6bmIjKxU

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.b41426526b5706d3cc49ab13cf0fbe30.exe
- Size
  
  360KB
- MD5
  
  b41426526b5706d3cc49ab13cf0fbe30
- SHA1
  
  15fa233a6978d3c337c81b35c30135932f6c0bbd
- SHA256
  
  cfe9f3b76667bc2ad8d356cd9e042be749a0261491be8aff3103c8a102e4549e
- SHA512
  
  9e809d06b64812228a7878b836c98da7d2e3482f276cbb4768d46a988331f3a1453cdc708e58391d0b96b751d71ee6593e0b97b3d61c195e6333f58759918c31
- SSDEEP
  
  6144:DcgrhX+2CpX2/mnbzvdLaD6OkPgl6bmIjlQFxU:DvRCpXImbzQD6OkPgl6bmIjKxU
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2