15dcf4f10a9a197285d80d01c5d57a911cad34a7ea0dc59447368d570ebffe5b | Triage

Sharing

General

Target

NEAS.9bcac77fdeccc77897ee87e53c833e08_JC.exe
Size

362KB
Sample

231011-tx31nabh25
MD5

9bcac77fdeccc77897ee87e53c833e08
SHA1

e74035c1c246be06cb1e61e98344c6d4b379cb39
SHA256

15dcf4f10a9a197285d80d01c5d57a911cad34a7ea0dc59447368d570ebffe5b
SHA512

793866958dd201e59b1f6ebe06c2e12168052897496edfcee300fc8f5d303ae460417cc21b54a5410f85082b17482aa40c1a50238519a5a09c0d105db75fa29d
SSDEEP

6144:bSpSK7UgArtGDuMEUrQVad7nG3mbDp2o+SsmiMyhtHEyr5psPc1aj8DOvlvuZxrB:3ztmuMtrQ07nGWxWSsmiMyh95r5OPGa6

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.9bcac77fdeccc77897ee87e53c833e08_JC.exe
- Size
  
  362KB
- MD5
  
  9bcac77fdeccc77897ee87e53c833e08
- SHA1
  
  e74035c1c246be06cb1e61e98344c6d4b379cb39
- SHA256
  
  15dcf4f10a9a197285d80d01c5d57a911cad34a7ea0dc59447368d570ebffe5b
- SHA512
  
  793866958dd201e59b1f6ebe06c2e12168052897496edfcee300fc8f5d303ae460417cc21b54a5410f85082b17482aa40c1a50238519a5a09c0d105db75fa29d
- SSDEEP
  
  6144:bSpSK7UgArtGDuMEUrQVad7nG3mbDp2o+SsmiMyhtHEyr5psPc1aj8DOvlvuZxrB:3ztmuMtrQ07nGWxWSsmiMyh95r5OPGa6
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2