1ed726efc90365af2434e03dae271bf1d176cb127337e591e350147e9c6563a9 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

NEAS.ff309cedb757fcb8593d0b7014bb2a99_JC.exe
Size

302KB
Sample

231012-xh7l3sbb89
MD5

ff309cedb757fcb8593d0b7014bb2a99
SHA1

f0240896d94531dcb1b3a08bacbc991346492635
SHA256

1ed726efc90365af2434e03dae271bf1d176cb127337e591e350147e9c6563a9
SHA512

15a193ab86471a3289cf8595fa5297e96738694e435ee4b905b9bcf67264f70c9c395053ce734931769cc7393ecf03e45107230736af27ddd7421b4f4e9b9b0e
SSDEEP

6144:DWeVgBlt1VsBFu3FF7fPtcsw6UJZqktbOUqCTGepXgbWH:DWbDUU3FF7fFcsw6UJZqktbDqCTGepXD

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.ff309cedb757fcb8593d0b7014bb2a99_JC.exe
- Size
  
  302KB
- MD5
  
  ff309cedb757fcb8593d0b7014bb2a99
- SHA1
  
  f0240896d94531dcb1b3a08bacbc991346492635
- SHA256
  
  1ed726efc90365af2434e03dae271bf1d176cb127337e591e350147e9c6563a9
- SHA512
  
  15a193ab86471a3289cf8595fa5297e96738694e435ee4b905b9bcf67264f70c9c395053ce734931769cc7393ecf03e45107230736af27ddd7421b4f4e9b9b0e
- SSDEEP
  
  6144:DWeVgBlt1VsBFu3FF7fPtcsw6UJZqktbOUqCTGepXgbWH:DWbDUU3FF7fFcsw6UJZqktbDqCTGepXD
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2