6026cab7157e0a5dcfd24cdc95edf035130e93f35d5e7b273944e5571dc712e4 | Triage

Sharing

General

Target

NEAS.732beba808341ae96d1e760c8daef95f_JC.exe
Size

171KB
Sample

231101-wgx6ksbc8t
MD5

732beba808341ae96d1e760c8daef95f
SHA1

8a6fc6c1f1e4f7b06dff216908e6597e92b67100
SHA256

6026cab7157e0a5dcfd24cdc95edf035130e93f35d5e7b273944e5571dc712e4
SHA512

1d777544eb3544afedabf03ef317cf9e08902804da8c922da5de5fe273a0e65f73a0a5eb27d5399c9f62d111380a75ca23d87e0574c2a9af0a759594c61760e2
SSDEEP

3072:yO6yu9AFpsQlJia7ngu+tAcrbFAJc+RsUi1aVDkOvhJjvJ:yyKiZn7OrtMsQB

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.732beba808341ae96d1e760c8daef95f_JC.exe
- Size
  
  171KB
- MD5
  
  732beba808341ae96d1e760c8daef95f
- SHA1
  
  8a6fc6c1f1e4f7b06dff216908e6597e92b67100
- SHA256
  
  6026cab7157e0a5dcfd24cdc95edf035130e93f35d5e7b273944e5571dc712e4
- SHA512
  
  1d777544eb3544afedabf03ef317cf9e08902804da8c922da5de5fe273a0e65f73a0a5eb27d5399c9f62d111380a75ca23d87e0574c2a9af0a759594c61760e2
- SSDEEP
  
  3072:yO6yu9AFpsQlJia7ngu+tAcrbFAJc+RsUi1aVDkOvhJjvJ:yyKiZn7OrtMsQB
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2