868c194c9d7f9512e38c783e1723aa3d53debb129493f65659e88a8cdd01b6c1 | Triage

Sharing

General

Target

NEAS.0060776f87f81682449327ff62c61f40_JC.exe
Size

316KB
Sample

231103-zerskacb29
MD5

0060776f87f81682449327ff62c61f40
SHA1

5e785efd118142636bb8aad7580d85af4dcf70ed
SHA256

868c194c9d7f9512e38c783e1723aa3d53debb129493f65659e88a8cdd01b6c1
SHA512

429320ab71b4bb1d89606d78b2e7c170a22d2e133652cb801689d6e90e23bdb14f8a3a43ab8ad5f9e70795e1648a50d0d0342ad002c9805d477a1020ed05337d
SSDEEP

6144:zr/bUzkuvcBYC47l2xij4YTfpczmap8spMPed0VdtM9BdjhYn:zr0kuveY3cY1cia66MGd0Vs9BdNo

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  NEAS.0060776f87f81682449327ff62c61f40_JC.exe
- Size
  
  316KB
- MD5
  
  0060776f87f81682449327ff62c61f40
- SHA1
  
  5e785efd118142636bb8aad7580d85af4dcf70ed
- SHA256
  
  868c194c9d7f9512e38c783e1723aa3d53debb129493f65659e88a8cdd01b6c1
- SHA512
  
  429320ab71b4bb1d89606d78b2e7c170a22d2e133652cb801689d6e90e23bdb14f8a3a43ab8ad5f9e70795e1648a50d0d0342ad002c9805d477a1020ed05337d
- SSDEEP
  
  6144:zr/bUzkuvcBYC47l2xij4YTfpczmap8spMPed0VdtM9BdjhYn:zr0kuveY3cY1cia66MGd0Vs9BdNo
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2