f6abb398fb0c4869653bb414507bdd9fda7f9cb09311be99358c7a9996156e5a | Triage

Sharing

Copy URL Twitter E-mail

General

Target

NEAS.08b19cb714df1fa6c16973b161d2b3d0_JC.exe
Size

90KB
Sample

231011-txlflsbg93
MD5

08b19cb714df1fa6c16973b161d2b3d0
SHA1

9ce21c7131c134288a27e32be517883e032d2398
SHA256

f6abb398fb0c4869653bb414507bdd9fda7f9cb09311be99358c7a9996156e5a
SHA512

7a607244f32deb3d9569796df2f6843329da8db18def68ea9beadde142633842c99fbfa69ed0fdd1ac47303577686f67d3565d0f32342c947d327fb897752189
SSDEEP

1536:JsP7MPrA5jXzfh0ts3mZpK6pWlQL1NdIQbf59EMXLjAQOF+RPXt2ImwYGXu/Ub05:JUQPojDp0t9Vu6Vf5uixOMzreGXu/Ubi

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.08b19cb714df1fa6c16973b161d2b3d0_JC.exe
- Size
  
  90KB
- MD5
  
  08b19cb714df1fa6c16973b161d2b3d0
- SHA1
  
  9ce21c7131c134288a27e32be517883e032d2398
- SHA256
  
  f6abb398fb0c4869653bb414507bdd9fda7f9cb09311be99358c7a9996156e5a
- SHA512
  
  7a607244f32deb3d9569796df2f6843329da8db18def68ea9beadde142633842c99fbfa69ed0fdd1ac47303577686f67d3565d0f32342c947d327fb897752189
- SSDEEP
  
  1536:JsP7MPrA5jXzfh0ts3mZpK6pWlQL1NdIQbf59EMXLjAQOF+RPXt2ImwYGXu/Ub05:JUQPojDp0t9Vu6Vf5uixOMzreGXu/Ubi
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2