f399b2d647ad036d16f62bce73336335828398f51b5e1aaf3dd726bfb9297f9d | Triage

Sharing

General

Target

NEAS.bec4c95ac30f4397b030a4a8975baa63_JC.exe
Size

56KB
Sample

231012-wbpl9aeg9w
MD5

bec4c95ac30f4397b030a4a8975baa63
SHA1

a84ef8ee8d2d061eaf48d5f9305485bb728cbc74
SHA256

f399b2d647ad036d16f62bce73336335828398f51b5e1aaf3dd726bfb9297f9d
SHA512

840929c3e229d5bf477fa062244d63b926d29ec7d31c868f7e0b40a2ab8dac399ee59d987f0b69fb7b1bfd96174f1ad2af7256d97209338d9afb45a268b061b5
SSDEEP

1536:+gD03cumm+p2p8KOgkktfChI3VyeRE0Nr:HPpc8KeKfx0eRE0Nr

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.bec4c95ac30f4397b030a4a8975baa63_JC.exe
- Size
  
  56KB
- MD5
  
  bec4c95ac30f4397b030a4a8975baa63
- SHA1
  
  a84ef8ee8d2d061eaf48d5f9305485bb728cbc74
- SHA256
  
  f399b2d647ad036d16f62bce73336335828398f51b5e1aaf3dd726bfb9297f9d
- SHA512
  
  840929c3e229d5bf477fa062244d63b926d29ec7d31c868f7e0b40a2ab8dac399ee59d987f0b69fb7b1bfd96174f1ad2af7256d97209338d9afb45a268b061b5
- SSDEEP
  
  1536:+gD03cumm+p2p8KOgkktfChI3VyeRE0Nr:HPpc8KeKfx0eRE0Nr
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2