8b09f4fc79b6910814f9934310dff6bdd62af16ff588fb083b087b8d604403f5 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

NEAS.d6e7fa476bbabdc727b2664cc01a5e26_JC.exe
Size

322KB
Sample

231021-x1aeasag74
MD5

d6e7fa476bbabdc727b2664cc01a5e26
SHA1

46153d6db2601032632fa8c16cc99a3b08244b05
SHA256

8b09f4fc79b6910814f9934310dff6bdd62af16ff588fb083b087b8d604403f5
SHA512

a921774e2d89141ddaf6ce4dfd4670f746a277763bc362256cf8ba118ae26c1ca4898a119a36358e442cb15fee73b4ffa0f60242e714fe37f497e9d95484ba55
SSDEEP

1536:I2DxRrwIyBO3kYSXuJECwrZWafPYRMtr19RQrSTmDhdF+PhJFTq1dlCsTx4LBp:I4ZeUqXdW8PYy79emSVGZ3Odl2

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.d6e7fa476bbabdc727b2664cc01a5e26_JC.exe
- Size
  
  322KB
- MD5
  
  d6e7fa476bbabdc727b2664cc01a5e26
- SHA1
  
  46153d6db2601032632fa8c16cc99a3b08244b05
- SHA256
  
  8b09f4fc79b6910814f9934310dff6bdd62af16ff588fb083b087b8d604403f5
- SHA512
  
  a921774e2d89141ddaf6ce4dfd4670f746a277763bc362256cf8ba118ae26c1ca4898a119a36358e442cb15fee73b4ffa0f60242e714fe37f497e9d95484ba55
- SSDEEP
  
  1536:I2DxRrwIyBO3kYSXuJECwrZWafPYRMtr19RQrSTmDhdF+PhJFTq1dlCsTx4LBp:I4ZeUqXdW8PYy79emSVGZ3Odl2
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2