cdb67655e22aba0d9b65d9de2da42d273fc9098cd6501c6d0c8e9309bacb968c | Triage

Sharing

General

Target

NEAS.c5bb1419d3e744e7826edc8ed42e8520_JC.exe
Size

1.5MB
Sample

231008-sh83pafg38
MD5

c5bb1419d3e744e7826edc8ed42e8520
SHA1

4fc2fc041ced41c7d94406377a286b97bcccade0
SHA256

cdb67655e22aba0d9b65d9de2da42d273fc9098cd6501c6d0c8e9309bacb968c
SHA512

d88f2674b7e69509d79197ad9060c872de48f93f30a1344f2cade458e7f549ae0d07db524c460757c197f63a40a9fdf80a7f75f95e59e63b8e5a305caef05348
SSDEEP

24576:j0T4Ph2kkkkK4kXkkkkkkkkhLX3a20R0v50+YNpsKv2EvZHp3oWtec+fwv4cXcyx:jtbazR0vKLXZnec+Yv4cXcy6l6mFndwn

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.c5bb1419d3e744e7826edc8ed42e8520_JC.exe
- Size
  
  1.5MB
- MD5
  
  c5bb1419d3e744e7826edc8ed42e8520
- SHA1
  
  4fc2fc041ced41c7d94406377a286b97bcccade0
- SHA256
  
  cdb67655e22aba0d9b65d9de2da42d273fc9098cd6501c6d0c8e9309bacb968c
- SHA512
  
  d88f2674b7e69509d79197ad9060c872de48f93f30a1344f2cade458e7f549ae0d07db524c460757c197f63a40a9fdf80a7f75f95e59e63b8e5a305caef05348
- SSDEEP
  
  24576:j0T4Ph2kkkkK4kXkkkkkkkkhLX3a20R0v50+YNpsKv2EvZHp3oWtec+fwv4cXcyx:jtbazR0vKLXZnec+Yv4cXcy6l6mFndwn
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2