88e5c9615607ec880f5d542ca2166a27032d94e966fddef03c29a28124b0de7b | Triage

Sharing

General

Target

NEAS.b6584a52ca6472df3d52eed6fc85f7b8_JC.exe
Size

112KB
Sample

231012-v7nt6agg85
MD5

b6584a52ca6472df3d52eed6fc85f7b8
SHA1

90ff4fb228c4d3bb554b5ed4a1aec157e5e39864
SHA256

88e5c9615607ec880f5d542ca2166a27032d94e966fddef03c29a28124b0de7b
SHA512

b1ddec9de5263e8277da02f5d150f6d835c30ba2f104ce5eb0b84b83189efa1b9281d06d2467dfa9b92ca52097e93c7cff966435960016e6dec0642ba0cf0b69
SSDEEP

3072:z5/yvTAeQtlY5p9AtPJ9IDlRxyhTbhgu+tAcr+:z56rAeQtlLPsDshsra

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.b6584a52ca6472df3d52eed6fc85f7b8_JC.exe
- Size
  
  112KB
- MD5
  
  b6584a52ca6472df3d52eed6fc85f7b8
- SHA1
  
  90ff4fb228c4d3bb554b5ed4a1aec157e5e39864
- SHA256
  
  88e5c9615607ec880f5d542ca2166a27032d94e966fddef03c29a28124b0de7b
- SHA512
  
  b1ddec9de5263e8277da02f5d150f6d835c30ba2f104ce5eb0b84b83189efa1b9281d06d2467dfa9b92ca52097e93c7cff966435960016e6dec0642ba0cf0b69
- SSDEEP
  
  3072:z5/yvTAeQtlY5p9AtPJ9IDlRxyhTbhgu+tAcr+:z56rAeQtlLPsDshsra
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2