6aa0c66082d1494f23e260bb8bdd9fe19c1daf58ee0ed40dc984aa8d7377b095 | Triage

Sharing

General

Target

NEAS.6f03ee460b8eba1c58e605d447e9be60.exe
Size

59KB
Sample

231022-vw67cseb6v
MD5

6f03ee460b8eba1c58e605d447e9be60
SHA1

df235b0c237281b700c5d11a13d80dc020ea6e1b
SHA256

6aa0c66082d1494f23e260bb8bdd9fe19c1daf58ee0ed40dc984aa8d7377b095
SHA512

9110e2f01d08d1379589c2be4c8467cf6eda530d2e1435ea0c8bc077a4f0536059426cd376dfe8e112961f3cdf82b120bd835ccc703f1731378af7455a9c3948
SSDEEP

1536:t4RESldcFYRo7KvZjB4yKfVhW+5N+mLh12LpO:AE0/o3XkpO

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.6f03ee460b8eba1c58e605d447e9be60.exe
- Size
  
  59KB
- MD5
  
  6f03ee460b8eba1c58e605d447e9be60
- SHA1
  
  df235b0c237281b700c5d11a13d80dc020ea6e1b
- SHA256
  
  6aa0c66082d1494f23e260bb8bdd9fe19c1daf58ee0ed40dc984aa8d7377b095
- SHA512
  
  9110e2f01d08d1379589c2be4c8467cf6eda530d2e1435ea0c8bc077a4f0536059426cd376dfe8e112961f3cdf82b120bd835ccc703f1731378af7455a9c3948
- SSDEEP
  
  1536:t4RESldcFYRo7KvZjB4yKfVhW+5N+mLh12LpO:AE0/o3XkpO
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2