ae2ad2106b8c4bf65470eea28cfa812f3484aa4e49075bfe1ab09c277890a051 | Triage

Sharing

General

Target

NEAS.df636e7945831c82dc6599250207f6a0.exe
Size

3.0MB
Sample

231022-v3cakahg6s
MD5

df636e7945831c82dc6599250207f6a0
SHA1

5077c9373e79473df081d35e67af8a73fbe1d673
SHA256

ae2ad2106b8c4bf65470eea28cfa812f3484aa4e49075bfe1ab09c277890a051
SHA512

b14a9e67be7f3dee1f37bca16d032f684a841780f6bd52d26cf307de68b0b629173c339de1ba4ed360a5c3ffcf3cc783cbdf6c38764d422d46dbbfc74be33322
SSDEEP

49152:j495UciMmq/NhjX5p3JOCdLAweZnE5c965nqqIP2Itdy:jk5LhzACdLAlnE5co5nqqIP2Itdy

Score

8^/10

discovery persistence

Malware Config

Targets

- Target
  
  NEAS.df636e7945831c82dc6599250207f6a0.exe
- Size
  
  3.0MB
- MD5
  
  df636e7945831c82dc6599250207f6a0
- SHA1
  
  5077c9373e79473df081d35e67af8a73fbe1d673
- SHA256
  
  ae2ad2106b8c4bf65470eea28cfa812f3484aa4e49075bfe1ab09c277890a051
- SHA512
  
  b14a9e67be7f3dee1f37bca16d032f684a841780f6bd52d26cf307de68b0b629173c339de1ba4ed360a5c3ffcf3cc783cbdf6c38764d422d46dbbfc74be33322
- SSDEEP
  
  49152:j495UciMmq/NhjX5p3JOCdLAweZnE5c965nqqIP2Itdy:jk5LhzACdLAlnE5co5nqqIP2Itdy
Score

8^/10

persistence discovery
- Modifies Installed Components in the registry
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Modifies file permissions
  discovery
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

File and Directory Permissions Modification

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2