63c290f51fb9d3f5d98afd739b4a13ff1181998d166ace43858e1319237280f0 | Triage

Sharing

General

Target

NEAS.003861e95704b5b0a032f0ef15f5cd50_JC.exe
Size

32KB
Sample

231102-hpg8fagf51
MD5

003861e95704b5b0a032f0ef15f5cd50
SHA1

57ac88047fa3d4115bdc58b0c01db1b2ac1e03b6
SHA256

63c290f51fb9d3f5d98afd739b4a13ff1181998d166ace43858e1319237280f0
SHA512

dcdee638eeee9fb0516e72d6bf2eac013ccd2c47600713764347f0a65fdbfb3a5b0c5bfcbc0864242baf9cc0f1b63d27de395a16e321735c2ae1e59f6868379b
SSDEEP

384:f98xUHQjrKWyGUJGy4/q8zLeiXerXnfaw9+ZuWVA+iX8/L3tLvb6g:WwABqop2N+A7kL39vb6g

Score

6^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.003861e95704b5b0a032f0ef15f5cd50_JC.exe
- Size
  
  32KB
- MD5
  
  003861e95704b5b0a032f0ef15f5cd50
- SHA1
  
  57ac88047fa3d4115bdc58b0c01db1b2ac1e03b6
- SHA256
  
  63c290f51fb9d3f5d98afd739b4a13ff1181998d166ace43858e1319237280f0
- SHA512
  
  dcdee638eeee9fb0516e72d6bf2eac013ccd2c47600713764347f0a65fdbfb3a5b0c5bfcbc0864242baf9cc0f1b63d27de395a16e321735c2ae1e59f6868379b
- SSDEEP
  
  384:f98xUHQjrKWyGUJGy4/q8zLeiXerXnfaw9+ZuWVA+iX8/L3tLvb6g:WwABqop2N+A7kL39vb6g
Score

6^/10

persistence
- Adds Run key to start application
  persistence
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2