6e96c81be117c7fb14500c9654154fbaf7653ad0c301259fa37596f123d5184b | Triage

Sharing

General

Target

NEAS.12906d0920887ff5b43905b26b70c5c0_JC.exe
Size

48KB
Sample

231016-r8g68ahb4z
MD5

12906d0920887ff5b43905b26b70c5c0
SHA1

67309fbc7927c53f9666640871a74b4bc2dd0dc1
SHA256

6e96c81be117c7fb14500c9654154fbaf7653ad0c301259fa37596f123d5184b
SHA512

5e6a3a546b33ccae3e01d277b5dafd8e4836fc87b7ac4d1cbfea35971ffa39288cd1427913005894e619541d7d803e839dd2645bf5237df4a0b78dc17109cf1f
SSDEEP

768:UMxdCdP7/JcC3Z3QhbU0ja5scEs6NKVX7kM47oKZqubf8/1H5:UM87/JcC3Zg1U2ascEsALoAquu

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.12906d0920887ff5b43905b26b70c5c0_JC.exe
- Size
  
  48KB
- MD5
  
  12906d0920887ff5b43905b26b70c5c0
- SHA1
  
  67309fbc7927c53f9666640871a74b4bc2dd0dc1
- SHA256
  
  6e96c81be117c7fb14500c9654154fbaf7653ad0c301259fa37596f123d5184b
- SHA512
  
  5e6a3a546b33ccae3e01d277b5dafd8e4836fc87b7ac4d1cbfea35971ffa39288cd1427913005894e619541d7d803e839dd2645bf5237df4a0b78dc17109cf1f
- SSDEEP
  
  768:UMxdCdP7/JcC3Z3QhbU0ja5scEs6NKVX7kM47oKZqubf8/1H5:UM87/JcC3Zg1U2ascEsALoAquu
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2