06fe21d8ebcc7238de173b5353c76a102cced0cf044138619ce52b5c95b3cc93 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

NEAS.c209876225a180f506ee1fc035b9cb2e_JC.exe
Size

304KB
Sample

231014-nc4tkafc36
MD5

c209876225a180f506ee1fc035b9cb2e
SHA1

0be832891c0ddb13f54fd52269e22b78c6f4ce1e
SHA256

06fe21d8ebcc7238de173b5353c76a102cced0cf044138619ce52b5c95b3cc93
SHA512

d357d7eab26b3d8bf5acfbbfb7a3a210c49d817b6afd4b701bd6a52d0ce2fc70751e0e15195a109417cb347920e94a03080fb9d42908e7c89e215850a88f5ec9
SSDEEP

6144:C1dVW1LeqpuN66gjMwGsmLrZNs/VKi/MwGsmLr5+NodY:CLM1LSXgjMmmpNs/VXMmmgJ

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.c209876225a180f506ee1fc035b9cb2e_JC.exe
- Size
  
  304KB
- MD5
  
  c209876225a180f506ee1fc035b9cb2e
- SHA1
  
  0be832891c0ddb13f54fd52269e22b78c6f4ce1e
- SHA256
  
  06fe21d8ebcc7238de173b5353c76a102cced0cf044138619ce52b5c95b3cc93
- SHA512
  
  d357d7eab26b3d8bf5acfbbfb7a3a210c49d817b6afd4b701bd6a52d0ce2fc70751e0e15195a109417cb347920e94a03080fb9d42908e7c89e215850a88f5ec9
- SSDEEP
  
  6144:C1dVW1LeqpuN66gjMwGsmLrZNs/VKi/MwGsmLr5+NodY:CLM1LSXgjMmmpNs/VXMmmgJ
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2