61ee0fe9ac90dec90ed200e5521345a669afaa76690b5d50ed0ae5e0afbc043f | Triage

Sharing

Copy URL Twitter E-mail

General

Target

NEAS.eac5b3c55a9969435f12367c75754291_JC.exe
Size

110KB
Sample

231011-w8r4msfh95
MD5

eac5b3c55a9969435f12367c75754291
SHA1

aa255fb3acfcae933cd4c02f4a7c2870931300a0
SHA256

61ee0fe9ac90dec90ed200e5521345a669afaa76690b5d50ed0ae5e0afbc043f
SHA512

2a16cbecec31e0b55e3c226702f841c01fad35ea9ccbd20617c0c41bbfcd55a37bda2732d897b07e8e232eccb79c12bb80546049adcb1430c8294a5a8d243ff8
SSDEEP

3072:KcSORUorumBJse1b/mTCOGl/sj2VdvXOW:NR1ZJseRmTgimhR

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.eac5b3c55a9969435f12367c75754291_JC.exe
- Size
  
  110KB
- MD5
  
  eac5b3c55a9969435f12367c75754291
- SHA1
  
  aa255fb3acfcae933cd4c02f4a7c2870931300a0
- SHA256
  
  61ee0fe9ac90dec90ed200e5521345a669afaa76690b5d50ed0ae5e0afbc043f
- SHA512
  
  2a16cbecec31e0b55e3c226702f841c01fad35ea9ccbd20617c0c41bbfcd55a37bda2732d897b07e8e232eccb79c12bb80546049adcb1430c8294a5a8d243ff8
- SSDEEP
  
  3072:KcSORUorumBJse1b/mTCOGl/sj2VdvXOW:NR1ZJseRmTgimhR
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2