89a27ec3cd607f0df219402323e33f81ec97d467bdad11b213bf19302938fea3 | Triage

Sharing

General

Target

NEAS.44659a585b913f0d53a3225f88a502c3_JC.exe
Size

214KB
Sample

231009-sy8f4adh3z
MD5

44659a585b913f0d53a3225f88a502c3
SHA1

f9e502d76c05963861c13ab842070ed4e4194c66
SHA256

89a27ec3cd607f0df219402323e33f81ec97d467bdad11b213bf19302938fea3
SHA512

e0b9aca71598d61ce634390f921abea95ec2943406a3c104f5d3acfe48750048790a54b9262761805227fa63c6564406c51a12c17af84ae4c168af75475309b1
SSDEEP

3072:fMKbPyw+SGVoy3eRAnDlmbGcGFDeaqIsKEYWyPVBweyFve3CFdagBk:EKbqFSqoyu4C9a6HYW0VBLyFviCqgBk

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.44659a585b913f0d53a3225f88a502c3_JC.exe
- Size
  
  214KB
- MD5
  
  44659a585b913f0d53a3225f88a502c3
- SHA1
  
  f9e502d76c05963861c13ab842070ed4e4194c66
- SHA256
  
  89a27ec3cd607f0df219402323e33f81ec97d467bdad11b213bf19302938fea3
- SHA512
  
  e0b9aca71598d61ce634390f921abea95ec2943406a3c104f5d3acfe48750048790a54b9262761805227fa63c6564406c51a12c17af84ae4c168af75475309b1
- SSDEEP
  
  3072:fMKbPyw+SGVoy3eRAnDlmbGcGFDeaqIsKEYWyPVBweyFve3CFdagBk:EKbqFSqoyu4C9a6HYW0VBLyFviCqgBk
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2