921b4f707e0ac1c74b0d021ac7e79563e2a670b69a104dd860dfb332f2a7428d | Triage

Sharing

Copy URL Twitter E-mail

General

Target

NEAS.cf06a67ca61e33485b766439ccbeb810.exe
Size

169KB
Sample

231028-yz7h3sbb6v
MD5

cf06a67ca61e33485b766439ccbeb810
SHA1

a78e283c4221a51cd43740eb149c5d1c525fd78c
SHA256

921b4f707e0ac1c74b0d021ac7e79563e2a670b69a104dd860dfb332f2a7428d
SHA512

4b68d2132ca0cf328e7445249f4a12216109fa50a82f318f7ec5ac0897b3bab7a801f7c63b537fd4940fe5d7aca9f81ecb8142677bf6d22696c88beb5eda8536
SSDEEP

3072:dwUtuJp5sgLMnwEK/wZX+xNIidFh8VaSM3eF4MitAdJ3+pJ15L:dwUtuD5FYnwEftCNIidr+k3qquJSPx

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.cf06a67ca61e33485b766439ccbeb810.exe
- Size
  
  169KB
- MD5
  
  cf06a67ca61e33485b766439ccbeb810
- SHA1
  
  a78e283c4221a51cd43740eb149c5d1c525fd78c
- SHA256
  
  921b4f707e0ac1c74b0d021ac7e79563e2a670b69a104dd860dfb332f2a7428d
- SHA512
  
  4b68d2132ca0cf328e7445249f4a12216109fa50a82f318f7ec5ac0897b3bab7a801f7c63b537fd4940fe5d7aca9f81ecb8142677bf6d22696c88beb5eda8536
- SSDEEP
  
  3072:dwUtuJp5sgLMnwEK/wZX+xNIidFh8VaSM3eF4MitAdJ3+pJ15L:dwUtuD5FYnwEftCNIidr+k3qquJSPx
Score

8^/10

persistence
- Modifies AppInit DLL entries
  persistence
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2