d28a899feaf60675f3ccaba22cc8eec2cdb5196f2c7ac0b4a13c3e300519c0bd | Triage

Sharing

General

Target

NEAS.e5f71aabb7057a3b3361b9205629125cexe_JC.exe
Size

81KB
Sample

231006-rhdfcaef29
MD5

e5f71aabb7057a3b3361b9205629125c
SHA1

a5e8aeafc8fc1b928e10b4bad234e848cc126e23
SHA256

d28a899feaf60675f3ccaba22cc8eec2cdb5196f2c7ac0b4a13c3e300519c0bd
SHA512

70c175b33c349986fc9df7d91ac017f571c92939396faa5762f59170f0d7e89e829fa420e4051ecbfd968dfaf2c452ad8e3d4516095d5245914198e78c32f3ee
SSDEEP

1536:nbKue+8+i5tW+BVN1MFtkGUVSaN7m4LO++/+1m6KadhYxU33HX0L:euCI+BvCFa1ZN/LrCimBaH8UH30L

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.e5f71aabb7057a3b3361b9205629125cexe_JC.exe
- Size
  
  81KB
- MD5
  
  e5f71aabb7057a3b3361b9205629125c
- SHA1
  
  a5e8aeafc8fc1b928e10b4bad234e848cc126e23
- SHA256
  
  d28a899feaf60675f3ccaba22cc8eec2cdb5196f2c7ac0b4a13c3e300519c0bd
- SHA512
  
  70c175b33c349986fc9df7d91ac017f571c92939396faa5762f59170f0d7e89e829fa420e4051ecbfd968dfaf2c452ad8e3d4516095d5245914198e78c32f3ee
- SSDEEP
  
  1536:nbKue+8+i5tW+BVN1MFtkGUVSaN7m4LO++/+1m6KadhYxU33HX0L:euCI+BvCFa1ZN/LrCimBaH8UH30L
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2