8dd5384c56f0aae8ad54d181572db81a4761e35d628bf0e058f8a9e0ea3b2691 | Triage

Sharing

General

Target

cdaa075661e1a9c597610dd845ece690_NEAS
Size

400KB
Sample

240507-s5vhtafg98
MD5

cdaa075661e1a9c597610dd845ece690
SHA1

ef82d3d4ee495853147beb4efe18a75b16c4ecc2
SHA256

8dd5384c56f0aae8ad54d181572db81a4761e35d628bf0e058f8a9e0ea3b2691
SHA512

ce63947e13bdee3078106bd32e05d07811cac4f317b85d218ad38e4e1bc17d01ee52ce2ff3cd1d57d8433bf6f3d9cdefba1a8e6b4d54381121310b184b80e96b
SSDEEP

6144:GA5JlNvGDM7HQO+zrWnAdqjeOpKfduBX2QO+zrWnAdqjsqwHlGrh/tObQOk:dl9Lj/+zrWAI5KFum/+zrWAIAqWim/k

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  cdaa075661e1a9c597610dd845ece690_NEAS
- Size
  
  400KB
- MD5
  
  cdaa075661e1a9c597610dd845ece690
- SHA1
  
  ef82d3d4ee495853147beb4efe18a75b16c4ecc2
- SHA256
  
  8dd5384c56f0aae8ad54d181572db81a4761e35d628bf0e058f8a9e0ea3b2691
- SHA512
  
  ce63947e13bdee3078106bd32e05d07811cac4f317b85d218ad38e4e1bc17d01ee52ce2ff3cd1d57d8433bf6f3d9cdefba1a8e6b4d54381121310b184b80e96b
- SSDEEP
  
  6144:GA5JlNvGDM7HQO+zrWnAdqjeOpKfduBX2QO+zrWnAdqjsqwHlGrh/tObQOk:dl9Lj/+zrWAI5KFum/+zrWAIAqWim/k
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2