e541b030c7971a24df4fe378cdcd3588d0531b9353e98cb8c539dae50d78a76b | Triage

Sharing

Copy URL Twitter E-mail

General

Target

NEAS.cf3b1369cb17aa2760df3f3f0a6203b0.exe
Size

479KB
Sample

231021-1dw7bshf6v
MD5

cf3b1369cb17aa2760df3f3f0a6203b0
SHA1

671a2347df0b929a26a225a67080c1e8ad586eb7
SHA256

e541b030c7971a24df4fe378cdcd3588d0531b9353e98cb8c539dae50d78a76b
SHA512

4f1603927664210500a2e20651b37c24000a196b6991cc778aa7cddcee4f5831fe5215980fb0fc07147cf346b235cfac96c58505f9611c3fb0b4019c8c1bf632
SSDEEP

6144:/4gpTutCl7QZAuQ3POwXYrMdlvkGr0f+uPOwXYrMdl2MPnhd8+ZDI:gKCk6wIaJwISfPI

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.cf3b1369cb17aa2760df3f3f0a6203b0.exe
- Size
  
  479KB
- MD5
  
  cf3b1369cb17aa2760df3f3f0a6203b0
- SHA1
  
  671a2347df0b929a26a225a67080c1e8ad586eb7
- SHA256
  
  e541b030c7971a24df4fe378cdcd3588d0531b9353e98cb8c539dae50d78a76b
- SHA512
  
  4f1603927664210500a2e20651b37c24000a196b6991cc778aa7cddcee4f5831fe5215980fb0fc07147cf346b235cfac96c58505f9611c3fb0b4019c8c1bf632
- SSDEEP
  
  6144:/4gpTutCl7QZAuQ3POwXYrMdlvkGr0f+uPOwXYrMdl2MPnhd8+ZDI:gKCk6wIaJwISfPI
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2