2769225a1e53c06e94b60d0938bb1032cd971cdd8c6eae5fadacde98b02d0088 | Triage

Sharing

General

Target

NEAS.7be9d78b52968c322d3093b9c8371d00_JC.exe
Size

479KB
Sample

231102-mh9rbsce73
MD5

7be9d78b52968c322d3093b9c8371d00
SHA1

91e067e2f886fe67619a4de8c68211bd7c5f3960
SHA256

2769225a1e53c06e94b60d0938bb1032cd971cdd8c6eae5fadacde98b02d0088
SHA512

4482145255d9d6ddff8f1c88491b3adbfd87f3d816050d42fcd02540ffcbab1dd9bdd51ce02e8e870600a656af095678f878ca4a60bbe65b2dd25c376e8a0957
SSDEEP

12288:M/lc87eqqV5e+wBV6O+qHcbI2ltusl5r/yKhK:M/SqqHeVBxpcTu+/3K

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.7be9d78b52968c322d3093b9c8371d00_JC.exe
- Size
  
  479KB
- MD5
  
  7be9d78b52968c322d3093b9c8371d00
- SHA1
  
  91e067e2f886fe67619a4de8c68211bd7c5f3960
- SHA256
  
  2769225a1e53c06e94b60d0938bb1032cd971cdd8c6eae5fadacde98b02d0088
- SHA512
  
  4482145255d9d6ddff8f1c88491b3adbfd87f3d816050d42fcd02540ffcbab1dd9bdd51ce02e8e870600a656af095678f878ca4a60bbe65b2dd25c376e8a0957
- SSDEEP
  
  12288:M/lc87eqqV5e+wBV6O+qHcbI2ltusl5r/yKhK:M/SqqHeVBxpcTu+/3K
Score

7^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2