ba665ce55b94d00cf8edbe483d580dc020fd2ad08d6d29985a8faeb72f970cd2 | Triage

Sharing

General

Target

NEAS.cbe4d96f7645e12aa98a54f506bd7158_JC.exe
Size

89KB
Sample

231101-v4wetsbb21
MD5

cbe4d96f7645e12aa98a54f506bd7158
SHA1

542e30aa963391edc7429fb68481057708f68e64
SHA256

ba665ce55b94d00cf8edbe483d580dc020fd2ad08d6d29985a8faeb72f970cd2
SHA512

3db6c669638018552d11de368abec02ca142826204b0f7153f7b6f5219cb863f988096b981bb0462be9d44df3cd1f318253a407e9d5223ef6b563ae69e95d64d
SSDEEP

1536:vp7j2QEViEROVtpeaVb48SyMRrPTyjTXxwxjnNEiA33FpE+RQbR+KRFR3RzR1URb:R7j5pEYJea148forwDxwdNqFi+ebjb5C

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.cbe4d96f7645e12aa98a54f506bd7158_JC.exe
- Size
  
  89KB
- MD5
  
  cbe4d96f7645e12aa98a54f506bd7158
- SHA1
  
  542e30aa963391edc7429fb68481057708f68e64
- SHA256
  
  ba665ce55b94d00cf8edbe483d580dc020fd2ad08d6d29985a8faeb72f970cd2
- SHA512
  
  3db6c669638018552d11de368abec02ca142826204b0f7153f7b6f5219cb863f988096b981bb0462be9d44df3cd1f318253a407e9d5223ef6b563ae69e95d64d
- SSDEEP
  
  1536:vp7j2QEViEROVtpeaVb48SyMRrPTyjTXxwxjnNEiA33FpE+RQbR+KRFR3RzR1URb:R7j5pEYJea148forwDxwdNqFi+ebjb5C
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2