7643061bfc021eb991387e57ac75e540e35ce4732f3d63bb9c41e3397fea38f5 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

NEAS.adf6378fa3ce8b5036263b43614dfdb0_JC.exe
Size

224KB
Sample

231103-bj6waabh63
MD5

adf6378fa3ce8b5036263b43614dfdb0
SHA1

546917c88c2736444f9e3c4a06da73966eef98d2
SHA256

7643061bfc021eb991387e57ac75e540e35ce4732f3d63bb9c41e3397fea38f5
SHA512

005a62580a6bf4be910c465ae969a8b64163b0ed4ef7b2eaff6de38fe252e466678aaeedd81980967ba9683ccf3f827ded654aececa90e46662c99fc98b76f51
SSDEEP

6144:+tu+4jVmKOmC+0BZUtlptGIyn4JImloAyBr3C+0BZUtlpt:+tu+4ZmKb0BZU7+IynR0BZU7

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.adf6378fa3ce8b5036263b43614dfdb0_JC.exe
- Size
  
  224KB
- MD5
  
  adf6378fa3ce8b5036263b43614dfdb0
- SHA1
  
  546917c88c2736444f9e3c4a06da73966eef98d2
- SHA256
  
  7643061bfc021eb991387e57ac75e540e35ce4732f3d63bb9c41e3397fea38f5
- SHA512
  
  005a62580a6bf4be910c465ae969a8b64163b0ed4ef7b2eaff6de38fe252e466678aaeedd81980967ba9683ccf3f827ded654aececa90e46662c99fc98b76f51
- SSDEEP
  
  6144:+tu+4jVmKOmC+0BZUtlptGIyn4JImloAyBr3C+0BZUtlpt:+tu+4ZmKb0BZU7+IynR0BZU7
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2