cfec0e66498e22218dd0fe10a4e4189b2a0f2b75eff061e906feb48253cebd7d | Triage

Sharing

General

Target

NEAS.bb1289f0248c4841eff877436ed3eda0.exe
Size

72KB
Sample

231028-yyszasbh33
MD5

bb1289f0248c4841eff877436ed3eda0
SHA1

058b2a12b235c2dfcc8425cca1000fb2e4c798cb
SHA256

cfec0e66498e22218dd0fe10a4e4189b2a0f2b75eff061e906feb48253cebd7d
SHA512

e8af8a7a9263e7d7ad769faac1674d7da62b66a0b969f5caca08f05e0a35c5cadc2852fef3c7ee426f238a71f276c2d4b89da88ff933a9f44a6b31e8d897e588
SSDEEP

1536:qg3VMLP/s2BNW9Qy4rvcOX9N/glpr/CgDwJ:1a3ce/8prqgDO

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.bb1289f0248c4841eff877436ed3eda0.exe
- Size
  
  72KB
- MD5
  
  bb1289f0248c4841eff877436ed3eda0
- SHA1
  
  058b2a12b235c2dfcc8425cca1000fb2e4c798cb
- SHA256
  
  cfec0e66498e22218dd0fe10a4e4189b2a0f2b75eff061e906feb48253cebd7d
- SHA512
  
  e8af8a7a9263e7d7ad769faac1674d7da62b66a0b969f5caca08f05e0a35c5cadc2852fef3c7ee426f238a71f276c2d4b89da88ff933a9f44a6b31e8d897e588
- SSDEEP
  
  1536:qg3VMLP/s2BNW9Qy4rvcOX9N/glpr/CgDwJ:1a3ce/8prqgDO
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2