f712d57fb4cefeb6ac4ed0499c828e6851cdb911985e53d6109435c10519adae | Triage

Sharing

Copy URL Twitter E-mail

General

Target

NEAS.aabca454160717cc690765eec9ea0910_JC.exe
Size

182KB
Sample

231031-1qy7fsgd54
MD5

aabca454160717cc690765eec9ea0910
SHA1

db58acc50c4551d325d5f2b8de57bf80150f895f
SHA256

f712d57fb4cefeb6ac4ed0499c828e6851cdb911985e53d6109435c10519adae
SHA512

36a67f9fc1d2ecc040669ca27b23b0c761b091be58daffa13b362bb52ee706ba7860c838836b618166401d1e5f460095d1f925596792755bf4df01e4e3caab49
SSDEEP

3072:pd3w2uPKyfVzEorj2ObXlLUpmlLBsLnVUUHyNwtN4/nEBlMdQC4ahAXLNNjNNyNL:pejbUpXUUHyN4lMdQCqbNNjNNyNNjNN5

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.aabca454160717cc690765eec9ea0910_JC.exe
- Size
  
  182KB
- MD5
  
  aabca454160717cc690765eec9ea0910
- SHA1
  
  db58acc50c4551d325d5f2b8de57bf80150f895f
- SHA256
  
  f712d57fb4cefeb6ac4ed0499c828e6851cdb911985e53d6109435c10519adae
- SHA512
  
  36a67f9fc1d2ecc040669ca27b23b0c761b091be58daffa13b362bb52ee706ba7860c838836b618166401d1e5f460095d1f925596792755bf4df01e4e3caab49
- SSDEEP
  
  3072:pd3w2uPKyfVzEorj2ObXlLUpmlLBsLnVUUHyNwtN4/nEBlMdQC4ahAXLNNjNNyNL:pejbUpXUUHyN4lMdQCqbNNjNNyNNjNN5
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2