d43cc9200dfe2bba39b608265389417a740517eb2a6c36a183d7931028ce0098 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

NEAS.2c4acb479b5d3892e54540554fe315d7_JC.exe
Size

352KB
Sample

231011-sx9b1afh6v
MD5

2c4acb479b5d3892e54540554fe315d7
SHA1

ef1d34ba066d90e1ccdd596a8ee8bfdbf5990497
SHA256

d43cc9200dfe2bba39b608265389417a740517eb2a6c36a183d7931028ce0098
SHA512

23245468f32f0dd750d4ef0abc386db224c5e337a85c58b167a6a7aa65a706b426a9eba6c6199f2394bf5f4c10eefefefcbb13345f1c9ea4daacb188c2d19a7c
SSDEEP

3072:/YKamXVvz60LthQoOJF4EISi/i4gG4nv4H3EzkGSaXiT+9S+a1+s3wNxn:gsr/m4yjwHL/T7Gsyn

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.2c4acb479b5d3892e54540554fe315d7_JC.exe
- Size
  
  352KB
- MD5
  
  2c4acb479b5d3892e54540554fe315d7
- SHA1
  
  ef1d34ba066d90e1ccdd596a8ee8bfdbf5990497
- SHA256
  
  d43cc9200dfe2bba39b608265389417a740517eb2a6c36a183d7931028ce0098
- SHA512
  
  23245468f32f0dd750d4ef0abc386db224c5e337a85c58b167a6a7aa65a706b426a9eba6c6199f2394bf5f4c10eefefefcbb13345f1c9ea4daacb188c2d19a7c
- SSDEEP
  
  3072:/YKamXVvz60LthQoOJF4EISi/i4gG4nv4H3EzkGSaXiT+9S+a1+s3wNxn:gsr/m4yjwHL/T7Gsyn
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2