5fbdc30571e569c1c829c7d1cbc40b0426f070cd374ce32f8e8b266de49eec20 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

NEAS.f86dbe68a8b240ee724585b1077fb771_JC.exe
Size

154KB
Sample

231015-tqv2gahc9w
MD5

f86dbe68a8b240ee724585b1077fb771
SHA1

6ed2f034344e0e7201b3ec0cb2d219646535879b
SHA256

5fbdc30571e569c1c829c7d1cbc40b0426f070cd374ce32f8e8b266de49eec20
SHA512

6e6771df68d4fe12dddffb1931a1bc454e17e75fe7562a69868a81e921d74dc32de127eada2b6962be91fc3913cc1438bfc62e4c632ed6a188bbba34f304479b
SSDEEP

3072:4B9YC2SgERhE+QmuI2DFiNaoJQuPpFNfyoarm9mTKpAImSKeTk7P2T:en/tQvFhMJvFfZySSKpRmSKeTk7eT

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.f86dbe68a8b240ee724585b1077fb771_JC.exe
- Size
  
  154KB
- MD5
  
  f86dbe68a8b240ee724585b1077fb771
- SHA1
  
  6ed2f034344e0e7201b3ec0cb2d219646535879b
- SHA256
  
  5fbdc30571e569c1c829c7d1cbc40b0426f070cd374ce32f8e8b266de49eec20
- SHA512
  
  6e6771df68d4fe12dddffb1931a1bc454e17e75fe7562a69868a81e921d74dc32de127eada2b6962be91fc3913cc1438bfc62e4c632ed6a188bbba34f304479b
- SSDEEP
  
  3072:4B9YC2SgERhE+QmuI2DFiNaoJQuPpFNfyoarm9mTKpAImSKeTk7P2T:en/tQvFhMJvFfZySSKpRmSKeTk7eT
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2