85e09068eb4a51304c4fd411634a35d46cebc5e52ad8ca5133b1c09dbbb01745 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

NEAS.b66c6556d5403574a2d5e8f23f0ceae0_JC.exe
Size

96KB
Sample

231101-qcvl1age8t
MD5

b66c6556d5403574a2d5e8f23f0ceae0
SHA1

baaaa4b069f5a7fcfc184c849d7cbd44f12edc54
SHA256

85e09068eb4a51304c4fd411634a35d46cebc5e52ad8ca5133b1c09dbbb01745
SHA512

48016e685edf5d45c255b1f8dfc5ccdb442dcf2e4fe117d9ef741832c5dc3ae2977ed19b7ee1d68357ddb36b5d564b6c8f07084359f84ca9067e81b293b4289b
SSDEEP

1536:98GZ5M/ALs6Hrja0LvcfWA2LEsBMu/HCmiDcg3MZRP3cEW3AE:9IALhnaBOxEa6miEo

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.b66c6556d5403574a2d5e8f23f0ceae0_JC.exe
- Size
  
  96KB
- MD5
  
  b66c6556d5403574a2d5e8f23f0ceae0
- SHA1
  
  baaaa4b069f5a7fcfc184c849d7cbd44f12edc54
- SHA256
  
  85e09068eb4a51304c4fd411634a35d46cebc5e52ad8ca5133b1c09dbbb01745
- SHA512
  
  48016e685edf5d45c255b1f8dfc5ccdb442dcf2e4fe117d9ef741832c5dc3ae2977ed19b7ee1d68357ddb36b5d564b6c8f07084359f84ca9067e81b293b4289b
- SSDEEP
  
  1536:98GZ5M/ALs6Hrja0LvcfWA2LEsBMu/HCmiDcg3MZRP3cEW3AE:9IALhnaBOxEa6miEo
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2