491f80ef6bf5ee6f369369726c1ccd7650fb639126b66773f7bf08daa0550035 | Triage

Sharing

General

Target

NEAS.47638328ee294e21e697747ea5b614c0_JC.exe
Size

222KB
Sample

231101-k24y3sgc56
MD5

47638328ee294e21e697747ea5b614c0
SHA1

d1cd7ae1f1d34ceca7143bb24a416f58dda18a87
SHA256

491f80ef6bf5ee6f369369726c1ccd7650fb639126b66773f7bf08daa0550035
SHA512

643b6bcc1044e62ecab94e286a47d49bc3f173d14354b5bf51572c3a40a7632daa5aad44661b5ffbad2e2b371f186b2c20c385b249621e52e32502bcf3d0f965
SSDEEP

6144:cNczAgJm2CUz/sJQBhZAaRv+r6viCUz/sJQBhZ:2S7gUz/+QIUy6NUz/+Q

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.47638328ee294e21e697747ea5b614c0_JC.exe
- Size
  
  222KB
- MD5
  
  47638328ee294e21e697747ea5b614c0
- SHA1
  
  d1cd7ae1f1d34ceca7143bb24a416f58dda18a87
- SHA256
  
  491f80ef6bf5ee6f369369726c1ccd7650fb639126b66773f7bf08daa0550035
- SHA512
  
  643b6bcc1044e62ecab94e286a47d49bc3f173d14354b5bf51572c3a40a7632daa5aad44661b5ffbad2e2b371f186b2c20c385b249621e52e32502bcf3d0f965
- SSDEEP
  
  6144:cNczAgJm2CUz/sJQBhZAaRv+r6viCUz/sJQBhZ:2S7gUz/+QIUy6NUz/+Q
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2