397dfbdde5d9200289124038f0c51e1e0062abfca22573ddbd0598e0ac28d0f4 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

NEAS.66bc82df9914b71bc1fb97f89e7fbb70_JC.exe
Size

93KB
Sample

231023-vs55wsbc2t
MD5

66bc82df9914b71bc1fb97f89e7fbb70
SHA1

054c2ff5f9d0fca14a10a184192f91fe84d79846
SHA256

397dfbdde5d9200289124038f0c51e1e0062abfca22573ddbd0598e0ac28d0f4
SHA512

1d6fc569b18c2f6a5c09ac8205f5d57edf07d83ef8a68e01d8e437b28d1ee6941ffae6570ab18aace37def8d06c2538873c0216e73bcc4159581b24167fbd5b7
SSDEEP

1536:6J6sB6pW0WSwRXsh+n4xv1cGSR0F9lUf9zsRQzRkRLJzeLD9N0iQGRNQR8RyV+3K:E3d0WHR8k4SGs0lUfWezSJdEN0s4WE+a

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.66bc82df9914b71bc1fb97f89e7fbb70_JC.exe
- Size
  
  93KB
- MD5
  
  66bc82df9914b71bc1fb97f89e7fbb70
- SHA1
  
  054c2ff5f9d0fca14a10a184192f91fe84d79846
- SHA256
  
  397dfbdde5d9200289124038f0c51e1e0062abfca22573ddbd0598e0ac28d0f4
- SHA512
  
  1d6fc569b18c2f6a5c09ac8205f5d57edf07d83ef8a68e01d8e437b28d1ee6941ffae6570ab18aace37def8d06c2538873c0216e73bcc4159581b24167fbd5b7
- SSDEEP
  
  1536:6J6sB6pW0WSwRXsh+n4xv1cGSR0F9lUf9zsRQzRkRLJzeLD9N0iQGRNQR8RyV+3K:E3d0WHR8k4SGs0lUfWezSJdEN0s4WE+a
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2