7f7b3d787a91c8ad2fcd6e0b70a76ec5b270f3bddc2cf6131fe65a2dea05b98d | Triage

Sharing

General

Target

NEAS.d2045b75c93a6ae639c6654419158100_JC.exe
Size

110KB
Sample

231101-qpg7faag33
MD5

d2045b75c93a6ae639c6654419158100
SHA1

30d6a15ebdbe39b4883ab0da6cf01c4f3266a807
SHA256

7f7b3d787a91c8ad2fcd6e0b70a76ec5b270f3bddc2cf6131fe65a2dea05b98d
SHA512

7509a8152f052cb3dfadc20a701fefd755c9d11c10d400ba4375a20f26760f42eabce1bf9ee1d6552fab2bf04be18ac9f0784b975134afb96e9cf0a95ced85a1
SSDEEP

1536:JGiyMszohVLc5eJMsxytQEz062L/lIaeFj4tiPvRWGQT2LN:pySVLc5eJMsYtQEQH/3eaiAwN

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.d2045b75c93a6ae639c6654419158100_JC.exe
- Size
  
  110KB
- MD5
  
  d2045b75c93a6ae639c6654419158100
- SHA1
  
  30d6a15ebdbe39b4883ab0da6cf01c4f3266a807
- SHA256
  
  7f7b3d787a91c8ad2fcd6e0b70a76ec5b270f3bddc2cf6131fe65a2dea05b98d
- SHA512
  
  7509a8152f052cb3dfadc20a701fefd755c9d11c10d400ba4375a20f26760f42eabce1bf9ee1d6552fab2bf04be18ac9f0784b975134afb96e9cf0a95ced85a1
- SSDEEP
  
  1536:JGiyMszohVLc5eJMsxytQEz062L/lIaeFj4tiPvRWGQT2LN:pySVLc5eJMsYtQEQH/3eaiAwN
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2