eb7ce5c2e950a16c14008784267affab23cc78a8ba54d1ba2ded5e7dcd0d460b | Triage

Sharing

General

Target

NEAS.06fde001e4b67e40e224d14b2ce201a0.exe
Size

234KB
Sample

231105-25b6xaec2v
MD5

06fde001e4b67e40e224d14b2ce201a0
SHA1

82b1cc071c1ef46fcfb1b343a736ba8704e1f79b
SHA256

eb7ce5c2e950a16c14008784267affab23cc78a8ba54d1ba2ded5e7dcd0d460b
SHA512

8c5861040c095feac6d38ad850d19ace2f91a568d80bec595a7addbe11ff342b7359d16080a13f11fc8f24704ca2d820eae7f69256b58cc7c0b6fe6ea24b28cf
SSDEEP

3072:O2x43rYHgaKwjl0I9r5rSzaXI8QZXB28JPSdwE2OqfYuN4d0gntUKDkQpo5J8KJK:OR3EVprWu5Qjj8djzqfYFv8QpqLJx

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.06fde001e4b67e40e224d14b2ce201a0.exe
- Size
  
  234KB
- MD5
  
  06fde001e4b67e40e224d14b2ce201a0
- SHA1
  
  82b1cc071c1ef46fcfb1b343a736ba8704e1f79b
- SHA256
  
  eb7ce5c2e950a16c14008784267affab23cc78a8ba54d1ba2ded5e7dcd0d460b
- SHA512
  
  8c5861040c095feac6d38ad850d19ace2f91a568d80bec595a7addbe11ff342b7359d16080a13f11fc8f24704ca2d820eae7f69256b58cc7c0b6fe6ea24b28cf
- SSDEEP
  
  3072:O2x43rYHgaKwjl0I9r5rSzaXI8QZXB28JPSdwE2OqfYuN4d0gntUKDkQpo5J8KJK:OR3EVprWu5Qjj8djzqfYFv8QpqLJx
Score

7^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2