2065c9487d90596e4fc2112972e0cb4af3aab2c3d9482fd8d3d1eb7682b6fa4e | Triage

Sharing

General

Target

NEAS.2fe84b1f76df39a8a49e95db174ae075_JC.exe
Size

366KB
Sample

231014-k8lq3sbe5w
MD5

2fe84b1f76df39a8a49e95db174ae075
SHA1

289e5c81cea4881a38384df8166115d346ac2a54
SHA256

2065c9487d90596e4fc2112972e0cb4af3aab2c3d9482fd8d3d1eb7682b6fa4e
SHA512

222ad8b73211abff498cf5829e8982c358c10c1e235a57771463c37c7347b430844ed515fd2ac70e1cf1053e546821e1c1937c3c1d05d8aa622e073445ddb4a6
SSDEEP

6144:G0+oSvtmAwcdB+52tyzaVFqHTCPXbo92ynnZlVrtv35CPXbo92ynn8sbeWD2/:GdoSvtdWaVwHxFHRFbe7

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.2fe84b1f76df39a8a49e95db174ae075_JC.exe
- Size
  
  366KB
- MD5
  
  2fe84b1f76df39a8a49e95db174ae075
- SHA1
  
  289e5c81cea4881a38384df8166115d346ac2a54
- SHA256
  
  2065c9487d90596e4fc2112972e0cb4af3aab2c3d9482fd8d3d1eb7682b6fa4e
- SHA512
  
  222ad8b73211abff498cf5829e8982c358c10c1e235a57771463c37c7347b430844ed515fd2ac70e1cf1053e546821e1c1937c3c1d05d8aa622e073445ddb4a6
- SSDEEP
  
  6144:G0+oSvtmAwcdB+52tyzaVFqHTCPXbo92ynnZlVrtv35CPXbo92ynn8sbeWD2/:GdoSvtdWaVwHxFHRFbe7
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2