934ef999904f98aff03cacd8a6aa75fec62812a1c1b5de4b9808c72b37b7769e | Triage

Sharing

General

Target

NEAS.946f972ce03fc1a65b53db9ddbc65750_JC.exe
Size

64KB
Sample

231101-nh8ppshe52
MD5

946f972ce03fc1a65b53db9ddbc65750
SHA1

c18b80d284c9b6b7faf35a04ded3d227c1787c16
SHA256

934ef999904f98aff03cacd8a6aa75fec62812a1c1b5de4b9808c72b37b7769e
SHA512

cda7fdaeb2a398ec4f9a059b3088089b5344f620eb1391a2b12f921023bf2039162c5f926b4b7bc67f48251eebf7994ec1338bc6c6bbae7d6977d8bd9bbf489e
SSDEEP

768:UsOU2vc1rIlZBKW+UYjQ1e26DUEU6sbmB1s0t2xsMDEmiBvTLA5P5m2p/1H5wEXG:lOUGHes1eXDE6Em52xsWiBem2L9AMCeW

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.946f972ce03fc1a65b53db9ddbc65750_JC.exe
- Size
  
  64KB
- MD5
  
  946f972ce03fc1a65b53db9ddbc65750
- SHA1
  
  c18b80d284c9b6b7faf35a04ded3d227c1787c16
- SHA256
  
  934ef999904f98aff03cacd8a6aa75fec62812a1c1b5de4b9808c72b37b7769e
- SHA512
  
  cda7fdaeb2a398ec4f9a059b3088089b5344f620eb1391a2b12f921023bf2039162c5f926b4b7bc67f48251eebf7994ec1338bc6c6bbae7d6977d8bd9bbf489e
- SSDEEP
  
  768:UsOU2vc1rIlZBKW+UYjQ1e26DUEU6sbmB1s0t2xsMDEmiBvTLA5P5m2p/1H5wEXG:lOUGHes1eXDE6Em52xsWiBem2L9AMCeW
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2