General
-
Target
NEAS.957196119b7452806e94d7d7fde92250_JC.exe
-
Size
412KB
-
Sample
231102-n8d8sade33
-
MD5
957196119b7452806e94d7d7fde92250
-
SHA1
eacd0aa865082400135e0df036cda0c93ba3c1ba
-
SHA256
7e37998c151fc5e5dc416240f8a46a31502a5c90fa557ed962f3960163b8b9e9
-
SHA512
d6b2076beabf045db28f169156981883611998f4e9100f8457e156d0d923a3c610da99fba58010a09488a65a83decc92b9fdcc210a8f5bb551c6195e0e37eef0
-
SSDEEP
6144:/dspDeDrxkg/vrMuJIgwhEFHyOrJcX/Pgqwzm5IzkWjS4e4azExBKO1t4Kb70Nq+:18kxNhOZElO5kkWjhD4AC
Malware Config
Targets
-
-
Target
NEAS.957196119b7452806e94d7d7fde92250_JC.exe
-
Size
412KB
-
MD5
957196119b7452806e94d7d7fde92250
-
SHA1
eacd0aa865082400135e0df036cda0c93ba3c1ba
-
SHA256
7e37998c151fc5e5dc416240f8a46a31502a5c90fa557ed962f3960163b8b9e9
-
SHA512
d6b2076beabf045db28f169156981883611998f4e9100f8457e156d0d923a3c610da99fba58010a09488a65a83decc92b9fdcc210a8f5bb551c6195e0e37eef0
-
SSDEEP
6144:/dspDeDrxkg/vrMuJIgwhEFHyOrJcX/Pgqwzm5IzkWjS4e4azExBKO1t4Kb70Nq+:18kxNhOZElO5kkWjhD4AC
Score7/10-
Executes dropped EXE
-
Loads dropped DLL
-
Modifies system executable filetype association
-
Adds Run key to start application
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-
MITRE ATT&CK Enterprise v15
Persistence
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Event Triggered Execution
1Change Default File Association
1Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Event Triggered Execution
1Change Default File Association
1