eb4e5b39ab9c64959e19832e9479f81eeb8db636a812f70d23ac380a4799abbe | Triage

Sharing

General

Target

NEAS.42398a81ff5a8a7fe5036545a1583980_JC.exe
Size

149KB
Sample

231031-x5bsxsch4t
MD5

42398a81ff5a8a7fe5036545a1583980
SHA1

5c2bda50d5a73f2b389fdcf16fb3652529f36b87
SHA256

eb4e5b39ab9c64959e19832e9479f81eeb8db636a812f70d23ac380a4799abbe
SHA512

edb2c65cb4899d57a1be8a9d4826a0a937dc2b105e9aeb80e0cd15d23b90dd6f94c93aade331f4adcb6fa2b9bb2fff862c1c6208f8ec47a44f7d87d09a1b1d67
SSDEEP

3072:J/BH9p/3K+AEkzgXrGqJM4qd3bGjhkqsXb6:JR9pTAEkz6rGq4Bbq2u

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.42398a81ff5a8a7fe5036545a1583980_JC.exe
- Size
  
  149KB
- MD5
  
  42398a81ff5a8a7fe5036545a1583980
- SHA1
  
  5c2bda50d5a73f2b389fdcf16fb3652529f36b87
- SHA256
  
  eb4e5b39ab9c64959e19832e9479f81eeb8db636a812f70d23ac380a4799abbe
- SHA512
  
  edb2c65cb4899d57a1be8a9d4826a0a937dc2b105e9aeb80e0cd15d23b90dd6f94c93aade331f4adcb6fa2b9bb2fff862c1c6208f8ec47a44f7d87d09a1b1d67
- SSDEEP
  
  3072:J/BH9p/3K+AEkzgXrGqJM4qd3bGjhkqsXb6:JR9pTAEkz6rGq4Bbq2u
Score

8^/10

persistence
- Modifies AppInit DLL entries
  persistence
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2