201773393c1090fadd25060d6e6e6d8c560a37116adfc38da3f6907d7d8169a7 | Triage

Sharing

General

Target

NEAS.2bcb29343dee3eafd61134b746c319c4_JC.exe
Size

1.6MB
Sample

231014-k6gz4sde76
MD5

2bcb29343dee3eafd61134b746c319c4
SHA1

c3b5a9e09de7b331296046e72008e4ef27f131c9
SHA256

201773393c1090fadd25060d6e6e6d8c560a37116adfc38da3f6907d7d8169a7
SHA512

0e6654fcbec9cbd89e9afb80c02d7cb90c991358027fe31df39bf29cb76efed1c37604b84e9a719866cc5731ac31930a2fc444f685854d829090e7b738487b61
SSDEEP

24576:M51x7cS9in6bxcqbF8fYTOYKbDurSUQN7kBG+JqJS+WOZseId9x0FOXr2rld:Mt7cS4neHbyfYTOYKPu/gEjiEO5ItDO

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.2bcb29343dee3eafd61134b746c319c4_JC.exe
- Size
  
  1.6MB
- MD5
  
  2bcb29343dee3eafd61134b746c319c4
- SHA1
  
  c3b5a9e09de7b331296046e72008e4ef27f131c9
- SHA256
  
  201773393c1090fadd25060d6e6e6d8c560a37116adfc38da3f6907d7d8169a7
- SHA512
  
  0e6654fcbec9cbd89e9afb80c02d7cb90c991358027fe31df39bf29cb76efed1c37604b84e9a719866cc5731ac31930a2fc444f685854d829090e7b738487b61
- SSDEEP
  
  24576:M51x7cS9in6bxcqbF8fYTOYKbDurSUQN7kBG+JqJS+WOZseId9x0FOXr2rld:Mt7cS4neHbyfYTOYKPu/gEjiEO5ItDO
Score

8^/10

persistence
- Sets service image path in registry
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2