8179998c48728c6a4ee8c5c2cf6162e5bf7a18ed790d3f91ebb13550888eb215 | Triage

Sharing

General

Target

NEAS.a1aedaab94459a8ce5f2462df25024f0_JC.exe
Size

1.5MB
Sample

231103-dzm48abd6v
MD5

a1aedaab94459a8ce5f2462df25024f0
SHA1

7501d34c49a95b1877db9a0bec02f0872fc13e2d
SHA256

8179998c48728c6a4ee8c5c2cf6162e5bf7a18ed790d3f91ebb13550888eb215
SHA512

f36c3697f8f8350f8f9cf718e2a07595fde3e4fdedcba2958d03650dd38269ca70c2b316708913ee31eacca74739ef6c60101c7b29fb56bda740e3d2dae96d08
SSDEEP

24576:5/e6x6Q2xZmk6Ux6Q2xlPh2kkkkK4kXkkkkkkkkhLX3a20R0v50+YNpsKv2EvZHl:5/eVlmkIhbazR0vKLXZ

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.a1aedaab94459a8ce5f2462df25024f0_JC.exe
- Size
  
  1.5MB
- MD5
  
  a1aedaab94459a8ce5f2462df25024f0
- SHA1
  
  7501d34c49a95b1877db9a0bec02f0872fc13e2d
- SHA256
  
  8179998c48728c6a4ee8c5c2cf6162e5bf7a18ed790d3f91ebb13550888eb215
- SHA512
  
  f36c3697f8f8350f8f9cf718e2a07595fde3e4fdedcba2958d03650dd38269ca70c2b316708913ee31eacca74739ef6c60101c7b29fb56bda740e3d2dae96d08
- SSDEEP
  
  24576:5/e6x6Q2xZmk6Ux6Q2xlPh2kkkkK4kXkkkkkkkkhLX3a20R0v50+YNpsKv2EvZHl:5/eVlmkIhbazR0vKLXZ
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2