da907c8c70c0a00bdab170eefcd536589d3dd58e86ced950e5f868fbae33f24d | Triage

Sharing

Copy URL Twitter E-mail

General

Target

NEAS.657e435821f175dbae090264a3ca4f09_JC.exe
Size

61KB
Sample

231008-rrqf9sch51
MD5

657e435821f175dbae090264a3ca4f09
SHA1

a8f8e63c19a7aaed577e2ebc6e8dfcd545bb6a2e
SHA256

da907c8c70c0a00bdab170eefcd536589d3dd58e86ced950e5f868fbae33f24d
SHA512

c6463e86b825d02f69b183b128f179826f40674ee208c3ca2cb520710f51ddace88148a2a6ab0b209ee4d8f3b143c64ba8958c719334dcc9d895b3063fe81803
SSDEEP

768:GYnI9ZvPg2k4u+hJDdv260OAhAH4Ii7u9bp6uqcl2aauA:GwIrHuCtd3FAhAYIi78xlba

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.657e435821f175dbae090264a3ca4f09_JC.exe
- Size
  
  61KB
- MD5
  
  657e435821f175dbae090264a3ca4f09
- SHA1
  
  a8f8e63c19a7aaed577e2ebc6e8dfcd545bb6a2e
- SHA256
  
  da907c8c70c0a00bdab170eefcd536589d3dd58e86ced950e5f868fbae33f24d
- SHA512
  
  c6463e86b825d02f69b183b128f179826f40674ee208c3ca2cb520710f51ddace88148a2a6ab0b209ee4d8f3b143c64ba8958c719334dcc9d895b3063fe81803
- SSDEEP
  
  768:GYnI9ZvPg2k4u+hJDdv260OAhAH4Ii7u9bp6uqcl2aauA:GwIrHuCtd3FAhAYIi78xlba
Score

7^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2