c88a4a08555416a2c8b02e118af0d6d27f30475da7cf14ae276e469a1e3fc5b0 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

NEAS.ee8cfea530ab9c069b622ed13d6e3410.exe
Size

176KB
Sample

231112-pz3epafd7v
MD5

ee8cfea530ab9c069b622ed13d6e3410
SHA1

6e7ce992ad858d6e71c5d1c42ec422e86f149303
SHA256

c88a4a08555416a2c8b02e118af0d6d27f30475da7cf14ae276e469a1e3fc5b0
SHA512

70d1c7f677b3174a0291c896d2a6f53ea12983814eb1e459869523573247032490aa653078c16313712fdc450b3e24fb80904ae093fb53cc0699c70ee41cc640
SSDEEP

3072:XrU9BHP1yzFk9TssWarlOGA8d2E2fAYjmjRrz3E3:Xo0oTXWRXE2fAEG4

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.ee8cfea530ab9c069b622ed13d6e3410.exe
- Size
  
  176KB
- MD5
  
  ee8cfea530ab9c069b622ed13d6e3410
- SHA1
  
  6e7ce992ad858d6e71c5d1c42ec422e86f149303
- SHA256
  
  c88a4a08555416a2c8b02e118af0d6d27f30475da7cf14ae276e469a1e3fc5b0
- SHA512
  
  70d1c7f677b3174a0291c896d2a6f53ea12983814eb1e459869523573247032490aa653078c16313712fdc450b3e24fb80904ae093fb53cc0699c70ee41cc640
- SSDEEP
  
  3072:XrU9BHP1yzFk9TssWarlOGA8d2E2fAYjmjRrz3E3:Xo0oTXWRXE2fAEG4
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2