General
-
Target
NEAS.NEASNEASe38cfe132158fb26de95b367811bca48d0c9ba22318bda33084363fa6e4637bcexeexeexe_JC.exe
-
Size
1.4MB
-
Sample
231013-w3jv3sfa87
-
MD5
4b45423fa806ba12d099173f6b4126f0
-
SHA1
86b3f3ed6db3b6dd024359cff9f684d7f7d32903
-
SHA256
e38cfe132158fb26de95b367811bca48d0c9ba22318bda33084363fa6e4637bc
-
SHA512
deb0c606169094f47f386f66f41a76011e7ed3710d50d5bd682437054ac1e8a671fa36d0d5e79d50d2debc2b3b104fcdf0831054a40b7b555a30c54e44188a8b
-
SSDEEP
24576:1yi2HBkN0hhWOga7AeHidUXuVVN8mwpKfLTBHBf/WA7hO/f6abYEsYT:QzHs2hW+AeJu+Kj1B2nmE9
Malware Config
Targets
-
-
Target
NEAS.NEASNEASe38cfe132158fb26de95b367811bca48d0c9ba22318bda33084363fa6e4637bcexeexeexe_JC.exe
-
Size
1.4MB
-
MD5
4b45423fa806ba12d099173f6b4126f0
-
SHA1
86b3f3ed6db3b6dd024359cff9f684d7f7d32903
-
SHA256
e38cfe132158fb26de95b367811bca48d0c9ba22318bda33084363fa6e4637bc
-
SHA512
deb0c606169094f47f386f66f41a76011e7ed3710d50d5bd682437054ac1e8a671fa36d0d5e79d50d2debc2b3b104fcdf0831054a40b7b555a30c54e44188a8b
-
SSDEEP
24576:1yi2HBkN0hhWOga7AeHidUXuVVN8mwpKfLTBHBf/WA7hO/f6abYEsYT:QzHs2hW+AeJu+Kj1B2nmE9
Score10/10-
Modifies Windows Defender Real-time Protection settings
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
Suspicious use of SetThreadContext
-
MITRE ATT&CK Enterprise v15
Persistence
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Create or Modify System Process
1Windows Service
1