bffb663e98f1ff8c2a7275d6eb71fb3e1dafa30bed9f4032d567d7f7f5cef437 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

NEAS.e059f87ca30cd86dfddc45b64e055d80.exe
Size

723KB
Sample

231106-dp9v8sge81
MD5

e059f87ca30cd86dfddc45b64e055d80
SHA1

755c9a078d8b560d1ca35c3a67ce6835c54609db
SHA256

bffb663e98f1ff8c2a7275d6eb71fb3e1dafa30bed9f4032d567d7f7f5cef437
SHA512

84788358fd1e485eb04dcac2dea3ce7521dba54897c23729142a74001ae6bc0341237e96d94f0c4bbad458f7c6bb55d2e8154b643955f6f95f4f92688b146e93
SSDEEP

3072:MGjhaq5iL0beJQZt32wLji5DlsODxRPNDkjmHzW9hUd56JsuBSjwGPmO12i1DzbD:Hha8iAx+1zwjmHd6vB/jO11zb

Score

6^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.e059f87ca30cd86dfddc45b64e055d80.exe
- Size
  
  723KB
- MD5
  
  e059f87ca30cd86dfddc45b64e055d80
- SHA1
  
  755c9a078d8b560d1ca35c3a67ce6835c54609db
- SHA256
  
  bffb663e98f1ff8c2a7275d6eb71fb3e1dafa30bed9f4032d567d7f7f5cef437
- SHA512
  
  84788358fd1e485eb04dcac2dea3ce7521dba54897c23729142a74001ae6bc0341237e96d94f0c4bbad458f7c6bb55d2e8154b643955f6f95f4f92688b146e93
- SSDEEP
  
  3072:MGjhaq5iL0beJQZt32wLji5DlsODxRPNDkjmHzW9hUd56JsuBSjwGPmO12i1DzbD:Hha8iAx+1zwjmHd6vB/jO11zb
Score

6^/10

persistence
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2