d45e6bca77230646edfd8d69eb835250fbe725b5a7af1f8c7a4423c56e30abcc | Triage

Sharing

General

Target

NEAS.ef276c4f7e288cce5709b168d28b7b10.exe
Size

792KB
Sample

231106-dvebhsab96
MD5

ef276c4f7e288cce5709b168d28b7b10
SHA1

ec74a5c82e246155773c7e1673caa49ce0a42c75
SHA256

d45e6bca77230646edfd8d69eb835250fbe725b5a7af1f8c7a4423c56e30abcc
SHA512

dfeecd5379e7d74bbe0ec3b73e6b7cc18d193e5e44d0515adfbde8d9f90329f778b8f267d71e160a0be63ffa22304ffa3ff34723b86f69b77ee56bb87d4806ee
SSDEEP

3072:MGjhaq5iL0beJQZt32wLji5DlsODxRPNDkjJHzW9hUd56JsuBSjwA2i1vP2i1a1o:Hha8iAx+1zwjJHd6vB/ANMj8e

Score

6^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.ef276c4f7e288cce5709b168d28b7b10.exe
- Size
  
  792KB
- MD5
  
  ef276c4f7e288cce5709b168d28b7b10
- SHA1
  
  ec74a5c82e246155773c7e1673caa49ce0a42c75
- SHA256
  
  d45e6bca77230646edfd8d69eb835250fbe725b5a7af1f8c7a4423c56e30abcc
- SHA512
  
  dfeecd5379e7d74bbe0ec3b73e6b7cc18d193e5e44d0515adfbde8d9f90329f778b8f267d71e160a0be63ffa22304ffa3ff34723b86f69b77ee56bb87d4806ee
- SSDEEP
  
  3072:MGjhaq5iL0beJQZt32wLji5DlsODxRPNDkjJHzW9hUd56JsuBSjwA2i1vP2i1a1o:Hha8iAx+1zwjJHd6vB/ANMj8e
Score

6^/10

persistence
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2