aeff85595f717f28bdfae24ba4b4082875821c1ff4bfefeeab94fb29ef0b6b83 | Triage

Sharing

General

Target

NEAS.c9f6fbb0e594602a854936171c3cf660.exe
Size

98KB
Sample

231014-xxa7esgd8t
MD5

c9f6fbb0e594602a854936171c3cf660
SHA1

57d1d238808e8335f3a31ca165e3e7a8b828cad0
SHA256

aeff85595f717f28bdfae24ba4b4082875821c1ff4bfefeeab94fb29ef0b6b83
SHA512

6e530ef29fe6d1c61b01ae88dd2758c921d3a99127bcd0ef02e64db8d8221b5ab2ca68cec7b9c7cfdf8a0285d1a60dfb75471c644c3cb7362ca71a54425d055f
SSDEEP

1536:v5CcCbVD1BbEyr9eeheZHsIwg/6HYmxKk3dhQ11111111111111wIzRAGMGoraPn:6toeIs9H1fdhwaEoeFKPD375lHzpa1P

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.c9f6fbb0e594602a854936171c3cf660.exe
- Size
  
  98KB
- MD5
  
  c9f6fbb0e594602a854936171c3cf660
- SHA1
  
  57d1d238808e8335f3a31ca165e3e7a8b828cad0
- SHA256
  
  aeff85595f717f28bdfae24ba4b4082875821c1ff4bfefeeab94fb29ef0b6b83
- SHA512
  
  6e530ef29fe6d1c61b01ae88dd2758c921d3a99127bcd0ef02e64db8d8221b5ab2ca68cec7b9c7cfdf8a0285d1a60dfb75471c644c3cb7362ca71a54425d055f
- SSDEEP
  
  1536:v5CcCbVD1BbEyr9eeheZHsIwg/6HYmxKk3dhQ11111111111111wIzRAGMGoraPn:6toeIs9H1fdhwaEoeFKPD375lHzpa1P
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2