2f0dd34fcc20e69bd378323da37ef9855b24c6eae4a95dfbd6bbdd6082072e81 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

NEAS.ef34f0e7fc06a567eaf233ce85c23dd0.exe
Size

320KB
Sample

231022-v4dvsaaf2s
MD5

ef34f0e7fc06a567eaf233ce85c23dd0
SHA1

25e6b36271fa4bd77d81054e3af2e96f56ec21e3
SHA256

2f0dd34fcc20e69bd378323da37ef9855b24c6eae4a95dfbd6bbdd6082072e81
SHA512

69a9a53737977f7f377e89d1f218d1ff2ef72a23cf9fd4dbdd33dc226f468c611041ba746c3f37016ef3a2a7d43e67eeb9631aa6fb823e1609f04030f6fe45e2
SSDEEP

6144:eIqxwYm6qXTe6UK+42GTQMJSZO5f7y164kND4The:eIqxwYXkY660f+04iD4The

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.ef34f0e7fc06a567eaf233ce85c23dd0.exe
- Size
  
  320KB
- MD5
  
  ef34f0e7fc06a567eaf233ce85c23dd0
- SHA1
  
  25e6b36271fa4bd77d81054e3af2e96f56ec21e3
- SHA256
  
  2f0dd34fcc20e69bd378323da37ef9855b24c6eae4a95dfbd6bbdd6082072e81
- SHA512
  
  69a9a53737977f7f377e89d1f218d1ff2ef72a23cf9fd4dbdd33dc226f468c611041ba746c3f37016ef3a2a7d43e67eeb9631aa6fb823e1609f04030f6fe45e2
- SSDEEP
  
  6144:eIqxwYm6qXTe6UK+42GTQMJSZO5f7y164kND4The:eIqxwYXkY660f+04iD4The
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2