12d91a53068b4d69a30fd766112403b14fa36ec3a21ca56ed77b45a9d0a4f69a | Triage

Sharing

General

Target

NEAS.09a595347c17f68777f4d05a94bbd760_JC.exe
Size

448KB
Sample

231102-3hffgsba57
MD5

09a595347c17f68777f4d05a94bbd760
SHA1

2551b4ef529be093b4df636c7fa94aa04cb47ed4
SHA256

12d91a53068b4d69a30fd766112403b14fa36ec3a21ca56ed77b45a9d0a4f69a
SHA512

a582bedb95c545d3c23925e21566eb818ca74591a31d18bc0782e14403491c9211c1cc2fa6456658466995cd9519d12f0d00fb647c366fa8486a80bce17c41a5
SSDEEP

6144:1AAEpe9xX5CPXbo92ynnZlVrtv35CPXbo92ynn8sbeWDYqtmL0o1sVmf5CPXbo9k:XEg9hFHRFberqt6nqYFHq

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.09a595347c17f68777f4d05a94bbd760_JC.exe
- Size
  
  448KB
- MD5
  
  09a595347c17f68777f4d05a94bbd760
- SHA1
  
  2551b4ef529be093b4df636c7fa94aa04cb47ed4
- SHA256
  
  12d91a53068b4d69a30fd766112403b14fa36ec3a21ca56ed77b45a9d0a4f69a
- SHA512
  
  a582bedb95c545d3c23925e21566eb818ca74591a31d18bc0782e14403491c9211c1cc2fa6456658466995cd9519d12f0d00fb647c366fa8486a80bce17c41a5
- SSDEEP
  
  6144:1AAEpe9xX5CPXbo92ynnZlVrtv35CPXbo92ynn8sbeWDYqtmL0o1sVmf5CPXbo9k:XEg9hFHRFberqt6nqYFHq
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2