7e00a3ff2d54d86c22a8e26f23c1090abadcaa4f012091e5af9336b4f5cc270e | Triage

Sharing

General

Target

NEAS.fe142cc2ff2ebf8fcae8963b0bf73c60_JC.exe
Size

128KB
Sample

231022-sh9dfsbh57
MD5

fe142cc2ff2ebf8fcae8963b0bf73c60
SHA1

5b8253162221dc117867a6a722c954965a683437
SHA256

7e00a3ff2d54d86c22a8e26f23c1090abadcaa4f012091e5af9336b4f5cc270e
SHA512

ffb8d1de56d8bc913354b6e75aa548d9f6558bc2a1a642737d0b37299422300f3d052de53d90df8235b4666bae2a8bf4f0f8254ea2f70f12070205bc0084b230
SSDEEP

1536:SfRFJp9PNPQwiacE0qQVphx0WITHLWMAJ/dRQmUEh44mjD9r823FmUI3kV3oBKi:SRNYhPE0pYrwemUEdmjRrz3TIUV4BKi

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.fe142cc2ff2ebf8fcae8963b0bf73c60_JC.exe
- Size
  
  128KB
- MD5
  
  fe142cc2ff2ebf8fcae8963b0bf73c60
- SHA1
  
  5b8253162221dc117867a6a722c954965a683437
- SHA256
  
  7e00a3ff2d54d86c22a8e26f23c1090abadcaa4f012091e5af9336b4f5cc270e
- SHA512
  
  ffb8d1de56d8bc913354b6e75aa548d9f6558bc2a1a642737d0b37299422300f3d052de53d90df8235b4666bae2a8bf4f0f8254ea2f70f12070205bc0084b230
- SSDEEP
  
  1536:SfRFJp9PNPQwiacE0qQVphx0WITHLWMAJ/dRQmUEh44mjD9r823FmUI3kV3oBKi:SRNYhPE0pYrwemUEdmjRrz3TIUV4BKi
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2