05037e65545938f184e83dcbeba2925441c80f22877a8ddafd4914c321c04203 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

NEAS.0ed6ba40d9985211de4d86aa1f876140_JC.exe
Size

59KB
Sample

231011-vb6p4aaf8x
MD5

0ed6ba40d9985211de4d86aa1f876140
SHA1

ccc73614406b9e9ffb3983e72d4b2b12281cb4c0
SHA256

05037e65545938f184e83dcbeba2925441c80f22877a8ddafd4914c321c04203
SHA512

e38f983ede90b269c1bf608bb75709981e60abf87c4578f926a9b89cd1b27e1f8eaaa8dfb1e55ed8f67e7de7638aedfbff67aca4ec14946046aabf261bd73c0c
SSDEEP

768:N5XsnhXmp/XHmG1FY40i5s87wU+6pwq6KDeaG5ug7fi5JOW2p/1H5IWXdnhfXaX3:Nc25k4n5sXQpwqlDeaw7/W2LpO

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.0ed6ba40d9985211de4d86aa1f876140_JC.exe
- Size
  
  59KB
- MD5
  
  0ed6ba40d9985211de4d86aa1f876140
- SHA1
  
  ccc73614406b9e9ffb3983e72d4b2b12281cb4c0
- SHA256
  
  05037e65545938f184e83dcbeba2925441c80f22877a8ddafd4914c321c04203
- SHA512
  
  e38f983ede90b269c1bf608bb75709981e60abf87c4578f926a9b89cd1b27e1f8eaaa8dfb1e55ed8f67e7de7638aedfbff67aca4ec14946046aabf261bd73c0c
- SSDEEP
  
  768:N5XsnhXmp/XHmG1FY40i5s87wU+6pwq6KDeaG5ug7fi5JOW2p/1H5IWXdnhfXaX3:Nc25k4n5sXQpwqlDeaw7/W2LpO
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2