39b9a73c4d500039a7f324674b13e2d01d963fd8f9f6c38f60f7ce8dc06d7c9a | Triage

Sharing

General

Target

NEAS.fb065f588dc78fdf3c2a87c022c07872_JC.exe
Size

237KB
Sample

231023-ybehdsfe48
MD5

fb065f588dc78fdf3c2a87c022c07872
SHA1

8ff8eef83dcd2d28f3aeaac90dfcf427917cb5e4
SHA256

39b9a73c4d500039a7f324674b13e2d01d963fd8f9f6c38f60f7ce8dc06d7c9a
SHA512

f8fa7d4f798daf6e99342ebb6b5d07208da76c2eb143f658b011b8b28ffcf011fc44bb08f61da42c35dc8080bbd5511ebdc37d372a650d0759bbf1fc9ceb9c47
SSDEEP

6144:Socrl+lzJjxobikQ76QwlkwsDkOlti7wnN:Ncr946QwqDtlr

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.fb065f588dc78fdf3c2a87c022c07872_JC.exe
- Size
  
  237KB
- MD5
  
  fb065f588dc78fdf3c2a87c022c07872
- SHA1
  
  8ff8eef83dcd2d28f3aeaac90dfcf427917cb5e4
- SHA256
  
  39b9a73c4d500039a7f324674b13e2d01d963fd8f9f6c38f60f7ce8dc06d7c9a
- SHA512
  
  f8fa7d4f798daf6e99342ebb6b5d07208da76c2eb143f658b011b8b28ffcf011fc44bb08f61da42c35dc8080bbd5511ebdc37d372a650d0759bbf1fc9ceb9c47
- SSDEEP
  
  6144:Socrl+lzJjxobikQ76QwlkwsDkOlti7wnN:Ncr946QwqDtlr
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2