b508e93a737fd00ba5b133d711f06b0d6206f5f9323c0281542774fb5cdd4042 | Triage

Sharing

General

Target

NEAS.cfee1757a57851ee73879cbc209b8640.exe
Size

79KB
Sample

231103-k6evrahc73
MD5

cfee1757a57851ee73879cbc209b8640
SHA1

b36685a05ebe37cc2259730438c18287f17fd533
SHA256

b508e93a737fd00ba5b133d711f06b0d6206f5f9323c0281542774fb5cdd4042
SHA512

0905361d5f7a9cf798df2846d4e25d1632750872a6c32f2096b3c41f0548a6e0e21bbf2f624097267f4a4e65a8d9ab4a9cf7b0d2518215118deac25b28763d00
SSDEEP

1536:aiQ78qR41U4G7aWya7Xy8pjP3lk3JkuSuEp/fzRUEViFkSIgiItKq9v6DK:cWC42/f7XVpr3Ci55p39UEVixtBtKq9d

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.cfee1757a57851ee73879cbc209b8640.exe
- Size
  
  79KB
- MD5
  
  cfee1757a57851ee73879cbc209b8640
- SHA1
  
  b36685a05ebe37cc2259730438c18287f17fd533
- SHA256
  
  b508e93a737fd00ba5b133d711f06b0d6206f5f9323c0281542774fb5cdd4042
- SHA512
  
  0905361d5f7a9cf798df2846d4e25d1632750872a6c32f2096b3c41f0548a6e0e21bbf2f624097267f4a4e65a8d9ab4a9cf7b0d2518215118deac25b28763d00
- SSDEEP
  
  1536:aiQ78qR41U4G7aWya7Xy8pjP3lk3JkuSuEp/fzRUEViFkSIgiItKq9v6DK:cWC42/f7XVpr3Ci55p39UEVixtBtKq9d
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2