fb97ce44cea92bdd8c61da3d357399143205f8ef64197bc0d3d9f316366e9dbe | Triage

Sharing

General

Target

NEAS.bdf0cfc7be3ee8deb029202ee225cec0.exe
Size

159KB
Sample

231115-hgbqpaeh9y
MD5

bdf0cfc7be3ee8deb029202ee225cec0
SHA1

d8ef3c4d68b38a9736ff8ac6ccdfbeb5674b7937
SHA256

fb97ce44cea92bdd8c61da3d357399143205f8ef64197bc0d3d9f316366e9dbe
SHA512

dcea6af5fad83eee9cebec0eb3464092c09dd9cb196c94eb4509de9cc6e038474e45ffd49a83ac6244ae1140dbdfbf04dddddc87f8a47e6e0020ba76daf0a20c
SSDEEP

3072:Qr6wY2Igs7T2G7Sj8GomX5VltS2gS1l8BhhGxbek1hAnwbGEUPIWmHbNh4qeAy:QraM8GomJVl82gglkGxb1taPIrHJh4qe

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.bdf0cfc7be3ee8deb029202ee225cec0.exe
- Size
  
  159KB
- MD5
  
  bdf0cfc7be3ee8deb029202ee225cec0
- SHA1
  
  d8ef3c4d68b38a9736ff8ac6ccdfbeb5674b7937
- SHA256
  
  fb97ce44cea92bdd8c61da3d357399143205f8ef64197bc0d3d9f316366e9dbe
- SHA512
  
  dcea6af5fad83eee9cebec0eb3464092c09dd9cb196c94eb4509de9cc6e038474e45ffd49a83ac6244ae1140dbdfbf04dddddc87f8a47e6e0020ba76daf0a20c
- SSDEEP
  
  3072:Qr6wY2Igs7T2G7Sj8GomX5VltS2gS1l8BhhGxbek1hAnwbGEUPIWmHbNh4qeAy:QraM8GomJVl82gglkGxb1taPIrHJh4qe
Score

8^/10

persistence
- Modifies AppInit DLL entries
  persistence
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2