8e72b900cdabfae421a212a428b54363c681864d0d5a7df29d84921391f40845 | Triage

Sharing

General

Target

NEAS.cde53a894b43da7bc4583f31c2932910.exe
Size

396KB
Sample

231028-yz5pgsbb3y
MD5

cde53a894b43da7bc4583f31c2932910
SHA1

0d0e361ee51e7d60eb694c89fc28caef7404af56
SHA256

8e72b900cdabfae421a212a428b54363c681864d0d5a7df29d84921391f40845
SHA512

dd76b9aaf419e97683e5e617819184daa16c522f6bff50e10ee2742706a71321d8f8f3305cb1feb48631e2e5e3136c8365929852105406b0b87008b6be876b29
SSDEEP

6144:/pA6XnAHLMFEcVshaiB00Bsn4X4s+ZKv3yr4X4743t5P6yC:/pA6aBLB+nisK3+i485P5C

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.cde53a894b43da7bc4583f31c2932910.exe
- Size
  
  396KB
- MD5
  
  cde53a894b43da7bc4583f31c2932910
- SHA1
  
  0d0e361ee51e7d60eb694c89fc28caef7404af56
- SHA256
  
  8e72b900cdabfae421a212a428b54363c681864d0d5a7df29d84921391f40845
- SHA512
  
  dd76b9aaf419e97683e5e617819184daa16c522f6bff50e10ee2742706a71321d8f8f3305cb1feb48631e2e5e3136c8365929852105406b0b87008b6be876b29
- SSDEEP
  
  6144:/pA6XnAHLMFEcVshaiB00Bsn4X4s+ZKv3yr4X4743t5P6yC:/pA6aBLB+nisK3+i485P5C
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2