32f0acf78bc1848e8d16c53c5545680e6f19831c796f918ecdca1f31177e7412 | Triage

Sharing

General

Target

NEAS.c569048b18c17ae03c64b3bcad7b9988_JC.exe
Size

104KB
Sample

231014-njpyzsdc5w
MD5

c569048b18c17ae03c64b3bcad7b9988
SHA1

e9be657aa31e829d482af8d6a37e276977d7a992
SHA256

32f0acf78bc1848e8d16c53c5545680e6f19831c796f918ecdca1f31177e7412
SHA512

16b661dc5c2bcfb74fe8e014252c690051951a4acb896a60c0ca1bc8453dee4f2f94742733451e73f3bfef64590bcbc80ed2b1147e782d97fbc83736ccdf6c4d
SSDEEP

3072:Zk0h5PBjoTqku5bpM7e8565e54mx7cEGrhkngpDvchkqbAIQS:z2Tzu5bW7GM5bx4brq2Ahn

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.c569048b18c17ae03c64b3bcad7b9988_JC.exe
- Size
  
  104KB
- MD5
  
  c569048b18c17ae03c64b3bcad7b9988
- SHA1
  
  e9be657aa31e829d482af8d6a37e276977d7a992
- SHA256
  
  32f0acf78bc1848e8d16c53c5545680e6f19831c796f918ecdca1f31177e7412
- SHA512
  
  16b661dc5c2bcfb74fe8e014252c690051951a4acb896a60c0ca1bc8453dee4f2f94742733451e73f3bfef64590bcbc80ed2b1147e782d97fbc83736ccdf6c4d
- SSDEEP
  
  3072:Zk0h5PBjoTqku5bpM7e8565e54mx7cEGrhkngpDvchkqbAIQS:z2Tzu5bW7GM5bx4brq2Ahn
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2