a942e33309fc602c2c0365a2dc5bf4dd083f570aa34c1837cf9fc7721981dd6d | Triage

Sharing

Copy URL Twitter E-mail

General

Target

NEAS.eff3ca9dd036f940d9ee1677f4bee470_JC.exe
Size

80KB
Sample

231102-z3ywsafg8z
MD5

eff3ca9dd036f940d9ee1677f4bee470
SHA1

626eb4123728b60978dc99f1895ffc86df22944b
SHA256

a942e33309fc602c2c0365a2dc5bf4dd083f570aa34c1837cf9fc7721981dd6d
SHA512

2ce71e9ce2586b77a3066e093ca80e2c18d61977721f4a6ecbe5a084f559efb3ecc2bf72e28457e4d1008c1ccb8411aca940db3301d3288cadbf28522f6785d1
SSDEEP

768:hn4ucJmrTFv1Td0XHyjZzy4xy/OUGN9IeWs3Y/2p/1H5rXdnhgYZZTum80ZIAPrn:zrTpv0SzyvGNKev+2LLCYrum8SPG2

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.eff3ca9dd036f940d9ee1677f4bee470_JC.exe
- Size
  
  80KB
- MD5
  
  eff3ca9dd036f940d9ee1677f4bee470
- SHA1
  
  626eb4123728b60978dc99f1895ffc86df22944b
- SHA256
  
  a942e33309fc602c2c0365a2dc5bf4dd083f570aa34c1837cf9fc7721981dd6d
- SHA512
  
  2ce71e9ce2586b77a3066e093ca80e2c18d61977721f4a6ecbe5a084f559efb3ecc2bf72e28457e4d1008c1ccb8411aca940db3301d3288cadbf28522f6785d1
- SSDEEP
  
  768:hn4ucJmrTFv1Td0XHyjZzy4xy/OUGN9IeWs3Y/2p/1H5rXdnhgYZZTum80ZIAPrn:zrTpv0SzyvGNKev+2LLCYrum8SPG2
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2