27ad2ef467f1824d39b815bc5f2c2b28b3d1ab7063a337d77e7520bfaffe7ead | Triage

Sharing

General

Target

NEAS.a6ec29b4c064cdcb45b85a4b9f0b7c67_JC.exe
Size

82KB
Sample

231011-t4h9tsca64
MD5

a6ec29b4c064cdcb45b85a4b9f0b7c67
SHA1

54255816d5f470f5c64f22c0d82f6dbd5879ae43
SHA256

27ad2ef467f1824d39b815bc5f2c2b28b3d1ab7063a337d77e7520bfaffe7ead
SHA512

0b482113d7cd1bd539920632b59d804679c92f44e02fa4f155d6ed8532b8db7d548175ac40c8178e1ed5d6ec2f3104cbc6c086d94d93971b3d476c4e90dc645c
SSDEEP

1536:yFOMlmPrNGhPfuLXQnDA4/DD67ebUr02L7wpm6+wDSmQFN6TiN1sJtvQu:y0/PxGhHQgnDAQD6KIZMpm6tm7N6TO1y

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.a6ec29b4c064cdcb45b85a4b9f0b7c67_JC.exe
- Size
  
  82KB
- MD5
  
  a6ec29b4c064cdcb45b85a4b9f0b7c67
- SHA1
  
  54255816d5f470f5c64f22c0d82f6dbd5879ae43
- SHA256
  
  27ad2ef467f1824d39b815bc5f2c2b28b3d1ab7063a337d77e7520bfaffe7ead
- SHA512
  
  0b482113d7cd1bd539920632b59d804679c92f44e02fa4f155d6ed8532b8db7d548175ac40c8178e1ed5d6ec2f3104cbc6c086d94d93971b3d476c4e90dc645c
- SSDEEP
  
  1536:yFOMlmPrNGhPfuLXQnDA4/DD67ebUr02L7wpm6+wDSmQFN6TiN1sJtvQu:y0/PxGhHQgnDAQD6KIZMpm6tm7N6TO1y
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2