15ae65aa18ce3eae724c85745de8975a15b86307b3d7d6effbc7ea8541c2e5e2 | Triage

Sharing

General

Target

NEAS.098fdb658f90a3bba3b3f0280c952580_JC.exe
Size

249KB
Sample

231023-zgrkksha78
MD5

098fdb658f90a3bba3b3f0280c952580
SHA1

d25eba00706a642e2dd83514fe3303d2cb0749db
SHA256

15ae65aa18ce3eae724c85745de8975a15b86307b3d7d6effbc7ea8541c2e5e2
SHA512

c477a8cc27aca6da317c83864bab9aede8d3acd1a377ced7d172eaaa8e075a7685f8e94b1635aac386786b59e0cb887517f44b8d3d5a014ed4639b482aeb56fd
SSDEEP

6144:7sZJCstu4PJg5/Ly0d8YaDRVHTVtSbGqJP:Yy5zyNYaHHDSf

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.098fdb658f90a3bba3b3f0280c952580_JC.exe
- Size
  
  249KB
- MD5
  
  098fdb658f90a3bba3b3f0280c952580
- SHA1
  
  d25eba00706a642e2dd83514fe3303d2cb0749db
- SHA256
  
  15ae65aa18ce3eae724c85745de8975a15b86307b3d7d6effbc7ea8541c2e5e2
- SHA512
  
  c477a8cc27aca6da317c83864bab9aede8d3acd1a377ced7d172eaaa8e075a7685f8e94b1635aac386786b59e0cb887517f44b8d3d5a014ed4639b482aeb56fd
- SSDEEP
  
  6144:7sZJCstu4PJg5/Ly0d8YaDRVHTVtSbGqJP:Yy5zyNYaHHDSf
Score

8^/10

persistence
- Modifies AppInit DLL entries
  persistence
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2