6b582bd433061a8a8c7d533df5c53d8163450a0e126a8b45722c2365ee99a8c4 | Triage

Sharing

General

Target

NEAS.531c783dd17947054793258160578e60_JC.exe
Size

52KB
Sample

231102-m4z41scg77
MD5

531c783dd17947054793258160578e60
SHA1

32b605da7718f4a6b30e8617302a5d9189447703
SHA256

6b582bd433061a8a8c7d533df5c53d8163450a0e126a8b45722c2365ee99a8c4
SHA512

4ad23b511038f72d0ee18ed17def757fa4d4d310ea82db3aaae5ed4adf4889e055a60a376bd65903f4c9f2a578527b00c28abcc33e0aa3087f47633d6e118522
SSDEEP

768:Fk+anE0H9CL6R14o0b/Y+eaU+zZtIr3LU2C+oU0ZaCznJK/1H5F/s5MABvKWe:gnEk8L6R1DWwmtIr0UKzKQMAdKZ

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.531c783dd17947054793258160578e60_JC.exe
- Size
  
  52KB
- MD5
  
  531c783dd17947054793258160578e60
- SHA1
  
  32b605da7718f4a6b30e8617302a5d9189447703
- SHA256
  
  6b582bd433061a8a8c7d533df5c53d8163450a0e126a8b45722c2365ee99a8c4
- SHA512
  
  4ad23b511038f72d0ee18ed17def757fa4d4d310ea82db3aaae5ed4adf4889e055a60a376bd65903f4c9f2a578527b00c28abcc33e0aa3087f47633d6e118522
- SSDEEP
  
  768:Fk+anE0H9CL6R14o0b/Y+eaU+zZtIr3LU2C+oU0ZaCznJK/1H5F/s5MABvKWe:gnEk8L6R1DWwmtIr0UKzKQMAdKZ
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2