384312880fc3704f1cc6ccab4954d3b646609a37e15de21b750240e6400d805d | Triage

Sharing

Copy URL Twitter E-mail

General

Target

NEAS.1638ac77c80442db466816cacb8454a0_JC.exe
Size

1.5MB
Sample

231016-svl4pahf2y
MD5

1638ac77c80442db466816cacb8454a0
SHA1

ba8ff76b9b0b49be8ea67ccd8ac391c2e6d66e03
SHA256

384312880fc3704f1cc6ccab4954d3b646609a37e15de21b750240e6400d805d
SHA512

88a87cc4be88026cf71a22b0d3254c77f7caab15155b48da358e490d0216842ee8b924103b008d5c2b8278de9fe0656625eb47a7576a2ed9fd8092db34dea42a
SSDEEP

24576:kcCT67wHqWis4l+jIACFr5hqjiLDpSJDN93pqb6W8cU4gLQSA:5Cpn8t74iA3qb6W8cU4J

Score

7^/10

Malware Config

Targets

- Target
  
  NEAS.1638ac77c80442db466816cacb8454a0_JC.exe
- Size
  
  1.5MB
- MD5
  
  1638ac77c80442db466816cacb8454a0
- SHA1
  
  ba8ff76b9b0b49be8ea67ccd8ac391c2e6d66e03
- SHA256
  
  384312880fc3704f1cc6ccab4954d3b646609a37e15de21b750240e6400d805d
- SHA512
  
  88a87cc4be88026cf71a22b0d3254c77f7caab15155b48da358e490d0216842ee8b924103b008d5c2b8278de9fe0656625eb47a7576a2ed9fd8092db34dea42a
- SSDEEP
  
  24576:kcCT67wHqWis4l+jIACFr5hqjiLDpSJDN93pqb6W8cU4gLQSA:5Cpn8t74iA3qb6W8cU4J
Score

7^/10
- Drops startup file
- Loads dropped DLL
- Drops autorun.inf file
  Malware can abuse Windows Autorun to spread further via attached volumes.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Replication Through Removable Media

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Replication Through Removable Media

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2