10fcae65109a1c6c680c4781f2fb0b11a9309e6ac7063ec1b3601464c8aafa39 | Triage

Sharing

General

Target

NEAS.023d8b6306decc6440acf860d62521d0_JC.exe
Size

1.7MB
Sample

231014-lnmnbadg92
MD5

023d8b6306decc6440acf860d62521d0
SHA1

981898a228bd1c40df4815135a3f533670345faf
SHA256

10fcae65109a1c6c680c4781f2fb0b11a9309e6ac7063ec1b3601464c8aafa39
SHA512

209e7feda69f331d772df626b0062ee70fbb428e0b1a07950a0532b9fb90b0355febbe77b1d20c3e7693c275cd74189d25c23027a805511a922adf76343baf9a
SSDEEP

24576:UXq5h3q5hL6X1q5h3q5hipq5h3q5hL6X1q5h3q5h:+60d6

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.023d8b6306decc6440acf860d62521d0_JC.exe
- Size
  
  1.7MB
- MD5
  
  023d8b6306decc6440acf860d62521d0
- SHA1
  
  981898a228bd1c40df4815135a3f533670345faf
- SHA256
  
  10fcae65109a1c6c680c4781f2fb0b11a9309e6ac7063ec1b3601464c8aafa39
- SHA512
  
  209e7feda69f331d772df626b0062ee70fbb428e0b1a07950a0532b9fb90b0355febbe77b1d20c3e7693c275cd74189d25c23027a805511a922adf76343baf9a
- SSDEEP
  
  24576:UXq5h3q5hL6X1q5h3q5hipq5h3q5hL6X1q5h3q5h:+60d6
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2