cae4feb5ff1d25d538ae0c123080d97384c9bf018ca3b640ef59f66ab6366b72 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

NEAS.c4d5b0f83f93d6dacb8bd726827f0cf0.exe
Size

225KB
Sample

231107-zl346shf65
MD5

c4d5b0f83f93d6dacb8bd726827f0cf0
SHA1

7c6a084af3cf2724ef84c9bb9e51dd9aabf38606
SHA256

cae4feb5ff1d25d538ae0c123080d97384c9bf018ca3b640ef59f66ab6366b72
SHA512

ffd7674bc9873ee68978aeb18b53b411a76bac344b520fdb7c6f641ff6494b8ab73e11019a9b3667848909eb95918a984b5958a37967138cc7586c76e3d54e9c
SSDEEP

3072:+U7JHh2QdP8cIlt4ZpzGv/dFRa1C8gVcF3Cdic1h6qFs3DXwUSxgaYvQd2x:zFwmoIqnrRwVHF3H6h60wDAKNx

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.c4d5b0f83f93d6dacb8bd726827f0cf0.exe
- Size
  
  225KB
- MD5
  
  c4d5b0f83f93d6dacb8bd726827f0cf0
- SHA1
  
  7c6a084af3cf2724ef84c9bb9e51dd9aabf38606
- SHA256
  
  cae4feb5ff1d25d538ae0c123080d97384c9bf018ca3b640ef59f66ab6366b72
- SHA512
  
  ffd7674bc9873ee68978aeb18b53b411a76bac344b520fdb7c6f641ff6494b8ab73e11019a9b3667848909eb95918a984b5958a37967138cc7586c76e3d54e9c
- SSDEEP
  
  3072:+U7JHh2QdP8cIlt4ZpzGv/dFRa1C8gVcF3Cdic1h6qFs3DXwUSxgaYvQd2x:zFwmoIqnrRwVHF3H6h60wDAKNx
Score

8^/10

persistence
- Modifies AppInit DLL entries
  persistence
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2