4d06657c3c36e7c56c2af0a1ccd1bad05d7d96ef4d66f4590f515df23f326474 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

NEAS.ecea8923a6143aa8e5fd3953350d8600_JC.exe
Size

704KB
Sample

231031-ydssssfb67
MD5

ecea8923a6143aa8e5fd3953350d8600
SHA1

540c4caf990d93f6df7ab4784058c07b6a9f02fd
SHA256

4d06657c3c36e7c56c2af0a1ccd1bad05d7d96ef4d66f4590f515df23f326474
SHA512

23b1cadd6ee1608e1a0f2ec39f935c2b2ea728849981ca8d44b6dc0dfa7e29c4aa0850c29a98b3eb432f835ba4e3c692e60cdcf591140a7a0bc5a16dfe036b1d
SSDEEP

3072:MGjhaq5iL0beJQZt32wLji5DlsODxRPNDkjmHzW9hUd56JsuBSjwGPmO12i1Dzbt:Hha8iAx+1zwjmHd6vB/jO11zw

Score

6^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.ecea8923a6143aa8e5fd3953350d8600_JC.exe
- Size
  
  704KB
- MD5
  
  ecea8923a6143aa8e5fd3953350d8600
- SHA1
  
  540c4caf990d93f6df7ab4784058c07b6a9f02fd
- SHA256
  
  4d06657c3c36e7c56c2af0a1ccd1bad05d7d96ef4d66f4590f515df23f326474
- SHA512
  
  23b1cadd6ee1608e1a0f2ec39f935c2b2ea728849981ca8d44b6dc0dfa7e29c4aa0850c29a98b3eb432f835ba4e3c692e60cdcf591140a7a0bc5a16dfe036b1d
- SSDEEP
  
  3072:MGjhaq5iL0beJQZt32wLji5DlsODxRPNDkjmHzW9hUd56JsuBSjwGPmO12i1Dzbt:Hha8iAx+1zwjmHd6vB/jO11zw
Score

6^/10

persistence
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2