edf32b50d9c8961580c7836e411967dbde007e14223d69b94698499ea7bba52b | Triage

Sharing

Copy URL Twitter E-mail

General

Target

NEAS.146af645d2d426fbc6eda06c7c472660_JC.exe
Size

932KB
Sample

231014-qge24sgd95
MD5

146af645d2d426fbc6eda06c7c472660
SHA1

eca70f5e01ec2190791ef1dab5837d949abefff6
SHA256

edf32b50d9c8961580c7836e411967dbde007e14223d69b94698499ea7bba52b
SHA512

cb5dea6b088bacce0f3dbedd0726d6407ae60676041d3dec3d002747f5cfa42f460c218ca2884f23da52633ff6b4c0ecd932301eac3281016a403da1a3204b43
SSDEEP

24576:P1/aGLDCM4D8ayGMZo8/Jnk26DIRMXzG7OR1/UCw6f3l/jjgLHu:gD8ayGMZoOk26DBa7OzUCwy

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.146af645d2d426fbc6eda06c7c472660_JC.exe
- Size
  
  932KB
- MD5
  
  146af645d2d426fbc6eda06c7c472660
- SHA1
  
  eca70f5e01ec2190791ef1dab5837d949abefff6
- SHA256
  
  edf32b50d9c8961580c7836e411967dbde007e14223d69b94698499ea7bba52b
- SHA512
  
  cb5dea6b088bacce0f3dbedd0726d6407ae60676041d3dec3d002747f5cfa42f460c218ca2884f23da52633ff6b4c0ecd932301eac3281016a403da1a3204b43
- SSDEEP
  
  24576:P1/aGLDCM4D8ayGMZo8/Jnk26DIRMXzG7OR1/UCw6f3l/jjgLHu:gD8ayGMZoOk26DBa7OzUCwy
Score

7^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2