8feeb5a96aad86ca44f59c1eed8158144b270c1cdd2210f1c884b8b6d8524a9b | Triage

Sharing

Copy URL Twitter E-mail

General

Target

NEAS.1fa111267732f915371c1b44a1565870_JC.exe
Size

72KB
Sample

231014-rzh26afd9s
MD5

1fa111267732f915371c1b44a1565870
SHA1

15eec678c633771cad88c5bde8afad3ce5114fff
SHA256

8feeb5a96aad86ca44f59c1eed8158144b270c1cdd2210f1c884b8b6d8524a9b
SHA512

a64bfad241e5315fe29e492819f1ded642250b8349bc3658992ebfbf39aad101451cebb9d161f6613da59806b5a22ea49dd676fdde42e3bbbea25292055826a7
SSDEEP

1536:CR0rl34qhspqqOUdzqEcxeJTpfqCGYwkPLB:j34qhsUqOuqatqCGYzLB

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.1fa111267732f915371c1b44a1565870_JC.exe
- Size
  
  72KB
- MD5
  
  1fa111267732f915371c1b44a1565870
- SHA1
  
  15eec678c633771cad88c5bde8afad3ce5114fff
- SHA256
  
  8feeb5a96aad86ca44f59c1eed8158144b270c1cdd2210f1c884b8b6d8524a9b
- SHA512
  
  a64bfad241e5315fe29e492819f1ded642250b8349bc3658992ebfbf39aad101451cebb9d161f6613da59806b5a22ea49dd676fdde42e3bbbea25292055826a7
- SSDEEP
  
  1536:CR0rl34qhspqqOUdzqEcxeJTpfqCGYwkPLB:j34qhsUqOuqatqCGYzLB
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2