a17dc779fc5da5346884aea1222dacefb52b948bff99caa417a2af3dc4bf3205 | Triage

Sharing

General

Target

NEAS.cae89ccacd169e5c6f824c537b232bb0.exe
Size

48KB
Sample

231103-rthjfaeg99
MD5

cae89ccacd169e5c6f824c537b232bb0
SHA1

5254edcb312ea6f31692aeafc5d13d4e33b8b56b
SHA256

a17dc779fc5da5346884aea1222dacefb52b948bff99caa417a2af3dc4bf3205
SHA512

f81080675def2a07ce151197a15fc9d077faa6489459b45e79dd7dc2e8df04cceed378eaf0ade70ff6867c8c8c6147fe9481a827b66b52473ac016d7e9ba419e
SSDEEP

768:vCKwMdQsXURqa+/XQCYvWfGYGR4CHOrlEVyoGLp5/1H5E:vrwMVXiqa+/XQCHfP/THpz

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.cae89ccacd169e5c6f824c537b232bb0.exe
- Size
  
  48KB
- MD5
  
  cae89ccacd169e5c6f824c537b232bb0
- SHA1
  
  5254edcb312ea6f31692aeafc5d13d4e33b8b56b
- SHA256
  
  a17dc779fc5da5346884aea1222dacefb52b948bff99caa417a2af3dc4bf3205
- SHA512
  
  f81080675def2a07ce151197a15fc9d077faa6489459b45e79dd7dc2e8df04cceed378eaf0ade70ff6867c8c8c6147fe9481a827b66b52473ac016d7e9ba419e
- SSDEEP
  
  768:vCKwMdQsXURqa+/XQCYvWfGYGR4CHOrlEVyoGLp5/1H5E:vrwMVXiqa+/XQCHfP/THpz
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2