a65a1474f40515092eae5877a9bd75cbee12f73e8b9a3214f3d0378ee02c65a5 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

NEAS.a269dd74207cdb26b3fd40eb624e2ca1_JC.exe
Size

45KB
Sample

231022-rrfl3ahe8t
MD5

a269dd74207cdb26b3fd40eb624e2ca1
SHA1

33b42e69c01804ccfd8b320562bd34a70c5116e3
SHA256

a65a1474f40515092eae5877a9bd75cbee12f73e8b9a3214f3d0378ee02c65a5
SHA512

64adaf2cb73747cd6ca2e0947d33202bccd8b6c6ed5e21939be83ae812b348da30b16c9e1a8180991fd2c1e0599822e76607db757be9f466ce4a2b3bd33e1217
SSDEEP

768:1j3wTrEyLgV9DtgDLZ4aUOE2WyGK5ybdwbDsS4aYrb/1H5D:1jgcyLs9DCTUbC7v54DJ

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.a269dd74207cdb26b3fd40eb624e2ca1_JC.exe
- Size
  
  45KB
- MD5
  
  a269dd74207cdb26b3fd40eb624e2ca1
- SHA1
  
  33b42e69c01804ccfd8b320562bd34a70c5116e3
- SHA256
  
  a65a1474f40515092eae5877a9bd75cbee12f73e8b9a3214f3d0378ee02c65a5
- SHA512
  
  64adaf2cb73747cd6ca2e0947d33202bccd8b6c6ed5e21939be83ae812b348da30b16c9e1a8180991fd2c1e0599822e76607db757be9f466ce4a2b3bd33e1217
- SSDEEP
  
  768:1j3wTrEyLgV9DtgDLZ4aUOE2WyGK5ybdwbDsS4aYrb/1H5D:1jgcyLs9DCTUbC7v54DJ
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2