f367871e7ee34a71e3348e9c520edc09c1cadcdc6827cb29c193c357ff496f7c | Triage

Sharing

Copy URL Twitter E-mail

General

Target

NEAS.cfd9923cede09b4408825b615caeb6b0.exe
Size

62KB
Sample

231028-yz8q5scg42
MD5

cfd9923cede09b4408825b615caeb6b0
SHA1

22d4c2e992c9c4ef00098c96d898e818f39d9ca8
SHA256

f367871e7ee34a71e3348e9c520edc09c1cadcdc6827cb29c193c357ff496f7c
SHA512

e103245660e3fd9fcd95af355eab3bbca591b8ee00d790770660812e7a67d551f6f8f688e667785c1dcab6a65101c3ee9ffae011589f6da67c907c27a391a4d2
SSDEEP

768:UKKmMsqPZzwpJZ+0isYP+MFcZd6gXeV3thuOyj1r5PthQASNsM5c1njH/1H5eXdV:eR4J2JFWDXofcj1VFeASXcljtm9l3zYY

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.cfd9923cede09b4408825b615caeb6b0.exe
- Size
  
  62KB
- MD5
  
  cfd9923cede09b4408825b615caeb6b0
- SHA1
  
  22d4c2e992c9c4ef00098c96d898e818f39d9ca8
- SHA256
  
  f367871e7ee34a71e3348e9c520edc09c1cadcdc6827cb29c193c357ff496f7c
- SHA512
  
  e103245660e3fd9fcd95af355eab3bbca591b8ee00d790770660812e7a67d551f6f8f688e667785c1dcab6a65101c3ee9ffae011589f6da67c907c27a391a4d2
- SSDEEP
  
  768:UKKmMsqPZzwpJZ+0isYP+MFcZd6gXeV3thuOyj1r5PthQASNsM5c1njH/1H5eXdV:eR4J2JFWDXofcj1VFeASXcljtm9l3zYY
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2