1b1d4cffaf8e9340bd3ac22b1737f4a766460409b82f52f05acb7f3071a2bab0 | Triage

Sharing

General

Target

NEAS.0606231db3a1199e7dfab31304b89e90_JC.exe
Size

80KB
Sample

231014-mgj5aacc8s
MD5

0606231db3a1199e7dfab31304b89e90
SHA1

01514b246d6e8c6a3f746a055bdb84aa4060363a
SHA256

1b1d4cffaf8e9340bd3ac22b1737f4a766460409b82f52f05acb7f3071a2bab0
SHA512

d1d12b4aecebde61177acd0cd8ee1f0e34de8ec145f376ad4bdcc46db8d9707e8d117e49ff99b91ce98bd3d4fdfbc761b72ed9402ecf8d2760382bffac3452cc
SSDEEP

1536:ce5609fdPMIJ0qLor5sCv2hBpm/o555YmnYiRHv42LQ7J9VqDlzVxyh+CbxMa:J6GBJ0IorABpoo5NnYyaJ9IDlRxyhTb7

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.0606231db3a1199e7dfab31304b89e90_JC.exe
- Size
  
  80KB
- MD5
  
  0606231db3a1199e7dfab31304b89e90
- SHA1
  
  01514b246d6e8c6a3f746a055bdb84aa4060363a
- SHA256
  
  1b1d4cffaf8e9340bd3ac22b1737f4a766460409b82f52f05acb7f3071a2bab0
- SHA512
  
  d1d12b4aecebde61177acd0cd8ee1f0e34de8ec145f376ad4bdcc46db8d9707e8d117e49ff99b91ce98bd3d4fdfbc761b72ed9402ecf8d2760382bffac3452cc
- SSDEEP
  
  1536:ce5609fdPMIJ0qLor5sCv2hBpm/o555YmnYiRHv42LQ7J9VqDlzVxyh+CbxMa:J6GBJ0IorABpoo5NnYyaJ9IDlRxyhTb7
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2