827abc2494325661a6bf0ebeddf193ee1decbc858fafcc58f360c29a715f3cd3 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

NEAS.b00cf9556f2e91099381d4f3ba94407c.exe
Size

64KB
Sample

231114-mexbtsbd7v
MD5

b00cf9556f2e91099381d4f3ba94407c
SHA1

4b85cc848e4f29632848688ca1e8c4b82f8c728a
SHA256

827abc2494325661a6bf0ebeddf193ee1decbc858fafcc58f360c29a715f3cd3
SHA512

a04ce309f558cb08eeab4b181aee700967f9954a185c4e0e8c04e09b7ea65f8946943df19950e72506d7083c12e4f810e50e241813995199bd5d2f60fd524a5a
SSDEEP

768:9OBdoIfcsLZ2ZKfhnItPfhcy9OgKbqswdqCvUyn4gS02ZEnyxcl0ki2p/1H5nXd1:9OBdAsLIotI5VsNeSZEyw0T2LnrDWBi

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.b00cf9556f2e91099381d4f3ba94407c.exe
- Size
  
  64KB
- MD5
  
  b00cf9556f2e91099381d4f3ba94407c
- SHA1
  
  4b85cc848e4f29632848688ca1e8c4b82f8c728a
- SHA256
  
  827abc2494325661a6bf0ebeddf193ee1decbc858fafcc58f360c29a715f3cd3
- SHA512
  
  a04ce309f558cb08eeab4b181aee700967f9954a185c4e0e8c04e09b7ea65f8946943df19950e72506d7083c12e4f810e50e241813995199bd5d2f60fd524a5a
- SSDEEP
  
  768:9OBdoIfcsLZ2ZKfhnItPfhcy9OgKbqswdqCvUyn4gS02ZEnyxcl0ki2p/1H5nXd1:9OBdAsLIotI5VsNeSZEyw0T2LnrDWBi
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2