cd1590553cfc747541e194d2074811fbe8af976ae1f554e8e7810998345ea150 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

NEAS.ca867cf78aa9ef62789b0524f3ecc7e0.exe
Size

275KB
Sample

231014-xxdybage3x
MD5

ca867cf78aa9ef62789b0524f3ecc7e0
SHA1

b3c344fa57f37653e837d945ae9fae5224d0534a
SHA256

cd1590553cfc747541e194d2074811fbe8af976ae1f554e8e7810998345ea150
SHA512

b0c6cf816c347c89d06bde9dc4a862ffa37177c899836ae5c7f85b86ffbb38331d3ffe9514ccec7e6a8696515a54ff9cbc266abd7b8271ef2b841aee8844506b
SSDEEP

6144:aiQuK5NTrMkSLGS+sz/QoooooooooooooooooUvu:aJuKrrAssz/0vu

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.ca867cf78aa9ef62789b0524f3ecc7e0.exe
- Size
  
  275KB
- MD5
  
  ca867cf78aa9ef62789b0524f3ecc7e0
- SHA1
  
  b3c344fa57f37653e837d945ae9fae5224d0534a
- SHA256
  
  cd1590553cfc747541e194d2074811fbe8af976ae1f554e8e7810998345ea150
- SHA512
  
  b0c6cf816c347c89d06bde9dc4a862ffa37177c899836ae5c7f85b86ffbb38331d3ffe9514ccec7e6a8696515a54ff9cbc266abd7b8271ef2b841aee8844506b
- SSDEEP
  
  6144:aiQuK5NTrMkSLGS+sz/QoooooooooooooooooUvu:aJuKrrAssz/0vu
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2