1242253b79d5c46a4df7ad11cd00340f835a3fdafc733d35ff6a86f8624af50a | Triage

Sharing

Copy URL Twitter E-mail

General

Target

NEAS.ce01ccf7d666ff93cdc3262376a61eb0.exe
Size

172KB
Sample

231014-xxp1ksgf9z
MD5

ce01ccf7d666ff93cdc3262376a61eb0
SHA1

09bcb5a5541513f1a3cb574d602828c39ccec140
SHA256

1242253b79d5c46a4df7ad11cd00340f835a3fdafc733d35ff6a86f8624af50a
SHA512

bc6f83856b3093d9ba5be5bffaa0154e69821c7598a9899342f283f0d7c45ae6d56eff166bc9e9f1e6f223e0232ae25b763888dad10cf55408943060cc2f07de
SSDEEP

3072:btxLrhAHSHSxgu+tAcrbFAJc+RsUi1aVDkOvhJjvJ:bSHqS8rtMsQB

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.ce01ccf7d666ff93cdc3262376a61eb0.exe
- Size
  
  172KB
- MD5
  
  ce01ccf7d666ff93cdc3262376a61eb0
- SHA1
  
  09bcb5a5541513f1a3cb574d602828c39ccec140
- SHA256
  
  1242253b79d5c46a4df7ad11cd00340f835a3fdafc733d35ff6a86f8624af50a
- SHA512
  
  bc6f83856b3093d9ba5be5bffaa0154e69821c7598a9899342f283f0d7c45ae6d56eff166bc9e9f1e6f223e0232ae25b763888dad10cf55408943060cc2f07de
- SSDEEP
  
  3072:btxLrhAHSHSxgu+tAcrbFAJc+RsUi1aVDkOvhJjvJ:bSHqS8rtMsQB
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2