3af1ac9fcebe6befef39847f54b318b94c123ffccadb7e584c3199c649588b83 | Triage

Sharing

General

Target

e4cae8a64d7b42d128164f6cc4627d40_NEAS
Size

1.4MB
Sample

240507-vmfm2sfe3t
MD5

e4cae8a64d7b42d128164f6cc4627d40
SHA1

6842f3c0b13529938a85029ae6ba81b15b341292
SHA256

3af1ac9fcebe6befef39847f54b318b94c123ffccadb7e584c3199c649588b83
SHA512

e2066e718309645c77e31c10f5a75228ff2e3af8c36d9bf6834c12f91f1abdea86183b5e963a7793d03a8466d1bd78cde0c7eea39bc7a1afa00493b5011b5a82
SSDEEP

12288:43vp6IveDVqvQqC8lMuqICAvUWLSKmaH1a/XWdZeBQTy:Eq5hZ6snARmaH1aUu

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  e4cae8a64d7b42d128164f6cc4627d40_NEAS
- Size
  
  1.4MB
- MD5
  
  e4cae8a64d7b42d128164f6cc4627d40
- SHA1
  
  6842f3c0b13529938a85029ae6ba81b15b341292
- SHA256
  
  3af1ac9fcebe6befef39847f54b318b94c123ffccadb7e584c3199c649588b83
- SHA512
  
  e2066e718309645c77e31c10f5a75228ff2e3af8c36d9bf6834c12f91f1abdea86183b5e963a7793d03a8466d1bd78cde0c7eea39bc7a1afa00493b5011b5a82
- SSDEEP
  
  12288:43vp6IveDVqvQqC8lMuqICAvUWLSKmaH1a/XWdZeBQTy:Eq5hZ6snARmaH1aUu
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2