525d4c062866ef947771c538d67d5c9e99dcde31a112b79c1ade1fe0d014fb25 | Triage

Sharing

General

Target

NEAS.b3a636c110e643f1b2652684e0e4f542_JC.exe
Size

76KB
Sample

231012-v684psee5x
MD5

b3a636c110e643f1b2652684e0e4f542
SHA1

46d1ad49489cd0d85313d2801562a7fe1c3de1c8
SHA256

525d4c062866ef947771c538d67d5c9e99dcde31a112b79c1ade1fe0d014fb25
SHA512

c3a5f6e2919e1793d37ea493b62c099e240408da75fc9ba763e94a18d7d43f02f265a41587d7af7865b9d8ffe9b78cd97fa12a2200e6ade9bab1eaf89745febf
SSDEEP

1536:LI12fEJp7IBaU1tUF7xcIkraMlHIKrqV9ej2D7pHioQV+/eCeyvCQ:hcpbUzukrJy4qV9fDtHrk+

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.b3a636c110e643f1b2652684e0e4f542_JC.exe
- Size
  
  76KB
- MD5
  
  b3a636c110e643f1b2652684e0e4f542
- SHA1
  
  46d1ad49489cd0d85313d2801562a7fe1c3de1c8
- SHA256
  
  525d4c062866ef947771c538d67d5c9e99dcde31a112b79c1ade1fe0d014fb25
- SHA512
  
  c3a5f6e2919e1793d37ea493b62c099e240408da75fc9ba763e94a18d7d43f02f265a41587d7af7865b9d8ffe9b78cd97fa12a2200e6ade9bab1eaf89745febf
- SSDEEP
  
  1536:LI12fEJp7IBaU1tUF7xcIkraMlHIKrqV9ej2D7pHioQV+/eCeyvCQ:hcpbUzukrJy4qV9fDtHrk+
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2