0225f3ead1de88191e594c977f462bba94060fd1f386e48223faa799ff39a135 | Triage

Sharing

General

Target

NEAS.e81b2370ebb7e1481305715212380b30_JC.exe
Size

81KB
Sample

231031-v7v88sdh35
MD5

e81b2370ebb7e1481305715212380b30
SHA1

cb2427e753fb3c243b80ed465253ff55f005d49e
SHA256

0225f3ead1de88191e594c977f462bba94060fd1f386e48223faa799ff39a135
SHA512

c59be96581235b85b56bb4aedb0418be61d2f5971c861d20c5183b178027f98471b78232db89f4d66dc841366dce06a691ce765ac272d44efbcb2f215635733e
SSDEEP

1536:nacoqeTBOXCpoqvRkYbrGYY/dsYy7nzVHbIjLjxS9/7m4LO++/+1m6KadhYxU33c:aZSCp1RXSYY/dsY8nzV4BS9//LrCimBB

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.e81b2370ebb7e1481305715212380b30_JC.exe
- Size
  
  81KB
- MD5
  
  e81b2370ebb7e1481305715212380b30
- SHA1
  
  cb2427e753fb3c243b80ed465253ff55f005d49e
- SHA256
  
  0225f3ead1de88191e594c977f462bba94060fd1f386e48223faa799ff39a135
- SHA512
  
  c59be96581235b85b56bb4aedb0418be61d2f5971c861d20c5183b178027f98471b78232db89f4d66dc841366dce06a691ce765ac272d44efbcb2f215635733e
- SSDEEP
  
  1536:nacoqeTBOXCpoqvRkYbrGYY/dsYy7nzVHbIjLjxS9/7m4LO++/+1m6KadhYxU33c:aZSCp1RXSYY/dsY8nzV4BS9//LrCimBB
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2