a0ed8750223b49396f86c2aaf84a35343484ac7ced6b456af1b71ed81be809e8 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

NEAS.c61717ae19346e457989d794daae5bbb_JC.exe
Size

208KB
Sample

231007-nlxrlsbd4z
MD5

c61717ae19346e457989d794daae5bbb
SHA1

bf7b5bee8cabb7da0216e1ae5df03a203ad108a6
SHA256

a0ed8750223b49396f86c2aaf84a35343484ac7ced6b456af1b71ed81be809e8
SHA512

70312f70259301cbdd2850b9c21cd83512475bbc6f45e0bd70e9564c233b1649c37a886a87e6ae0dd7e0473f4b318846587c9b36185b0ce19421d05c03e45f7c
SSDEEP

3072:JHlJoBLLEAcyRj6+JB8M6m9jqLsFmsdYXmLlcJVIZen+Vcv2JBwwRBkBnReP2+xs:fJ0dXRj6MB8MhjwszeXmr8SeNpgg

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.c61717ae19346e457989d794daae5bbb_JC.exe
- Size
  
  208KB
- MD5
  
  c61717ae19346e457989d794daae5bbb
- SHA1
  
  bf7b5bee8cabb7da0216e1ae5df03a203ad108a6
- SHA256
  
  a0ed8750223b49396f86c2aaf84a35343484ac7ced6b456af1b71ed81be809e8
- SHA512
  
  70312f70259301cbdd2850b9c21cd83512475bbc6f45e0bd70e9564c233b1649c37a886a87e6ae0dd7e0473f4b318846587c9b36185b0ce19421d05c03e45f7c
- SSDEEP
  
  3072:JHlJoBLLEAcyRj6+JB8M6m9jqLsFmsdYXmLlcJVIZen+Vcv2JBwwRBkBnReP2+xs:fJ0dXRj6MB8MhjwszeXmr8SeNpgg
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2