57d42b233168ca042c2a138a4a3bbf1bd80d40feaaad1098c4296bd52eb69b98 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

NEAS.fa2a72be56eb7d2080f56d448b032a1e_JC.exe
Size

4.8MB
Sample

231021-ymfvlahf5z
MD5

fa2a72be56eb7d2080f56d448b032a1e
SHA1

c253ca47757fa5c9d30bc28756511bbe68875c6b
SHA256

57d42b233168ca042c2a138a4a3bbf1bd80d40feaaad1098c4296bd52eb69b98
SHA512

89e6a2e920430bf2ba6f7ae5527fae0c931524dbed354e903225f27cd56118a0d850b8ec6109fb83251988b0eac102928bd0a83dcb0326285f1b6b2b623c9577
SSDEEP

49152:D+NEfT0HSh8wTwzWn1lioYTDGAfp8a+nTdsb0N00VwmNG2TXEBGhTod6sTJN0Qb4:nnpavoSCW/fRi

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.fa2a72be56eb7d2080f56d448b032a1e_JC.exe
- Size
  
  4.8MB
- MD5
  
  fa2a72be56eb7d2080f56d448b032a1e
- SHA1
  
  c253ca47757fa5c9d30bc28756511bbe68875c6b
- SHA256
  
  57d42b233168ca042c2a138a4a3bbf1bd80d40feaaad1098c4296bd52eb69b98
- SHA512
  
  89e6a2e920430bf2ba6f7ae5527fae0c931524dbed354e903225f27cd56118a0d850b8ec6109fb83251988b0eac102928bd0a83dcb0326285f1b6b2b623c9577
- SSDEEP
  
  49152:D+NEfT0HSh8wTwzWn1lioYTDGAfp8a+nTdsb0N00VwmNG2TXEBGhTod6sTJN0Qb4:nnpavoSCW/fRi
Score

7^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2