f75422c94fd657824b1337c13bfde76d2520689d4b5ab7bdfabcf9ca1bc49e4d | Triage

Sharing

Copy URL Twitter E-mail

General

Target

NEAS.993817874aad9e9f7a6566bcff632df0_JC.exe
Size

64KB
Sample

231031-x9v3csfa87
MD5

993817874aad9e9f7a6566bcff632df0
SHA1

8b618598ac4ae9f91005cf39916938de3ad9cb45
SHA256

f75422c94fd657824b1337c13bfde76d2520689d4b5ab7bdfabcf9ca1bc49e4d
SHA512

dc8e9709ae6c5a0bf6baa99db7208f0700d6a56336b8ccd22b5fdf48685f279de55ecda88dd07adebd0c8cfabfa36e112be7c7172bf7bea00d1c7b4e6a44784d
SSDEEP

1536:PdG6F7T/Z+sR6nCQbPSbCDIWClEVi9qGfS2LyrDWBi:PdG6F5+Y6nCQbabCDIF+i9qGXy2Bi

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.993817874aad9e9f7a6566bcff632df0_JC.exe
- Size
  
  64KB
- MD5
  
  993817874aad9e9f7a6566bcff632df0
- SHA1
  
  8b618598ac4ae9f91005cf39916938de3ad9cb45
- SHA256
  
  f75422c94fd657824b1337c13bfde76d2520689d4b5ab7bdfabcf9ca1bc49e4d
- SHA512
  
  dc8e9709ae6c5a0bf6baa99db7208f0700d6a56336b8ccd22b5fdf48685f279de55ecda88dd07adebd0c8cfabfa36e112be7c7172bf7bea00d1c7b4e6a44784d
- SSDEEP
  
  1536:PdG6F7T/Z+sR6nCQbPSbCDIWClEVi9qGfS2LyrDWBi:PdG6F5+Y6nCQbabCDIF+i9qGXy2Bi
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2