28062197f3140646a791ed276c35f5cedb95b1619a1e4a2b09e5f146bb3311e2 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

NEAS.NEASd7a2ff7b85cf4bc2e86b6db974856e3cexe_JC.exe
Size

93KB
Sample

231016-raapgsgb8x
MD5

d7a2ff7b85cf4bc2e86b6db974856e3c
SHA1

8a75e4f0990105eec0f3855a432d5b55f3d22d6f
SHA256

28062197f3140646a791ed276c35f5cedb95b1619a1e4a2b09e5f146bb3311e2
SHA512

e088b3241e5b550d4ca263a4187f1d2ea71565e3000301d49714167df56cd074a6a029feb1288c57100441270152d07fb8a1809e428ee86cd5f82bc72b6e5eac
SSDEEP

1536:OUxrsnTeeJ/+bvw/oY73o8CDDo+IK3YcOzj3dDoKsRQsRkRLJzeLD9N0iQGRNQR5:BrsTJM4/33RCGmgj3ixesSJdEN0s4WEd

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.NEASd7a2ff7b85cf4bc2e86b6db974856e3cexe_JC.exe
- Size
  
  93KB
- MD5
  
  d7a2ff7b85cf4bc2e86b6db974856e3c
- SHA1
  
  8a75e4f0990105eec0f3855a432d5b55f3d22d6f
- SHA256
  
  28062197f3140646a791ed276c35f5cedb95b1619a1e4a2b09e5f146bb3311e2
- SHA512
  
  e088b3241e5b550d4ca263a4187f1d2ea71565e3000301d49714167df56cd074a6a029feb1288c57100441270152d07fb8a1809e428ee86cd5f82bc72b6e5eac
- SSDEEP
  
  1536:OUxrsnTeeJ/+bvw/oY73o8CDDo+IK3YcOzj3dDoKsRQsRkRLJzeLD9N0iQGRNQR5:BrsTJM4/33RCGmgj3ixesSJdEN0s4WEd
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2