f6b8f3bda48c1c2b53b9e94f824ab32e7007236c225550e33b1edad7016ca820 | Triage

Sharing

General

Target

NEAS.c08bd47ae528ee7daef7b5e45f3c62f0.exe
Size

128KB
Sample

231102-vbk4dscf73
MD5

c08bd47ae528ee7daef7b5e45f3c62f0
SHA1

ffec4bcbc7865a15d3528900f083524c1bb7bf70
SHA256

f6b8f3bda48c1c2b53b9e94f824ab32e7007236c225550e33b1edad7016ca820
SHA512

b905455a97aa95816a5242e29a6b865024537490bb4b39159c6a70867fee5fe06af9b064c95ff9b9ddea5534f44286e1c06a8bde471ba2ecd761611b1ec87212
SSDEEP

3072:5Fv/Z/eSKFHFrdZTBJ9IDlRxyhTbhgu+tAcrbFAJc+i:5FvRglxZTBsDshsrtMk

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.c08bd47ae528ee7daef7b5e45f3c62f0.exe
- Size
  
  128KB
- MD5
  
  c08bd47ae528ee7daef7b5e45f3c62f0
- SHA1
  
  ffec4bcbc7865a15d3528900f083524c1bb7bf70
- SHA256
  
  f6b8f3bda48c1c2b53b9e94f824ab32e7007236c225550e33b1edad7016ca820
- SHA512
  
  b905455a97aa95816a5242e29a6b865024537490bb4b39159c6a70867fee5fe06af9b064c95ff9b9ddea5534f44286e1c06a8bde471ba2ecd761611b1ec87212
- SSDEEP
  
  3072:5Fv/Z/eSKFHFrdZTBJ9IDlRxyhTbhgu+tAcrbFAJc+i:5FvRglxZTBsDshsrtMk
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2