dcea2ebf0a6530030b2690104964a7765ea81506c21bb1dbad093afdc87a01e2 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

NEAS.e51733b3d7a0e1f46d69f4ea7bc25905_JC.exe
Size

404KB
Sample

231007-n5vrcsbg5v
MD5

e51733b3d7a0e1f46d69f4ea7bc25905
SHA1

0bd279041f9c7849cf5ddad288d96c6e800625e4
SHA256

dcea2ebf0a6530030b2690104964a7765ea81506c21bb1dbad093afdc87a01e2
SHA512

eed80101a99b11c249d3a02ede5d713aa286f97a7f331d4f7195f30705a925c67faa52e762d8960b2c8e41f1126071810f8cfcdd548fce20ed3712fbc6f7c2d0
SSDEEP

12288:eTlbJ0aFwcMpV6yYP4rbpV6yYPg058KS:wlbJJFwcMW4XWleKS

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.e51733b3d7a0e1f46d69f4ea7bc25905_JC.exe
- Size
  
  404KB
- MD5
  
  e51733b3d7a0e1f46d69f4ea7bc25905
- SHA1
  
  0bd279041f9c7849cf5ddad288d96c6e800625e4
- SHA256
  
  dcea2ebf0a6530030b2690104964a7765ea81506c21bb1dbad093afdc87a01e2
- SHA512
  
  eed80101a99b11c249d3a02ede5d713aa286f97a7f331d4f7195f30705a925c67faa52e762d8960b2c8e41f1126071810f8cfcdd548fce20ed3712fbc6f7c2d0
- SSDEEP
  
  12288:eTlbJ0aFwcMpV6yYP4rbpV6yYPg058KS:wlbJJFwcMW4XWleKS
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2