a6c0e0d7f2954edb36609e337aea95e0d59d1ec6a982e0028e9f68930d673137 | Triage

Sharing

General

Target

NEAS.fccceb6f006e7c9e30fa3f20a7a8dcf0_JC.exe
Size

160KB
Sample

231102-2gzx3aad63
MD5

fccceb6f006e7c9e30fa3f20a7a8dcf0
SHA1

9674dbb0be744818a9e7b7a76cb2f6d9e201511e
SHA256

a6c0e0d7f2954edb36609e337aea95e0d59d1ec6a982e0028e9f68930d673137
SHA512

9284362964393f7d389f57fdac51a124b957af40c0bf02be8c4ebb3e2dab36fc16e29b8d1a750b94ca93d29d87aad2b7c32325633f6b920bd0cf076b46ef836a
SSDEEP

3072:eD/23eptANUj6+JB8M6m9jqLsFmsdYXmLZ:w/wNUj6MB8MhjwszeXmF

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.fccceb6f006e7c9e30fa3f20a7a8dcf0_JC.exe
- Size
  
  160KB
- MD5
  
  fccceb6f006e7c9e30fa3f20a7a8dcf0
- SHA1
  
  9674dbb0be744818a9e7b7a76cb2f6d9e201511e
- SHA256
  
  a6c0e0d7f2954edb36609e337aea95e0d59d1ec6a982e0028e9f68930d673137
- SHA512
  
  9284362964393f7d389f57fdac51a124b957af40c0bf02be8c4ebb3e2dab36fc16e29b8d1a750b94ca93d29d87aad2b7c32325633f6b920bd0cf076b46ef836a
- SSDEEP
  
  3072:eD/23eptANUj6+JB8M6m9jqLsFmsdYXmLZ:w/wNUj6MB8MhjwszeXmF
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2