8b8957750bbcf5df20035693402fd4a69466d3340d5503a062e1f2cc86d95d9d | Triage

Sharing

General

Target

NEAS.6a4806b243cd361b232fee77d06c5d00_JC.exe
Size

336KB
Sample

231104-l63ggsfe5t
MD5

6a4806b243cd361b232fee77d06c5d00
SHA1

6c325dafa8e3397055936f1f5544f4e13bed4033
SHA256

8b8957750bbcf5df20035693402fd4a69466d3340d5503a062e1f2cc86d95d9d
SHA512

89ae06564176db12b45995be8373843d663ee0f2a3b130c6637213fac023784ee94f03c77db30b9b62913bedc27356726abc07c7af9cefb50465ae7efbc92604
SSDEEP

3072:abJ8MJJ/pZ22HPc+Q0j40UvWw48ddLM6hMLIokjwrhpcSvMpE1:s5XG20ka48ddLM6njNSR1

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.6a4806b243cd361b232fee77d06c5d00_JC.exe
- Size
  
  336KB
- MD5
  
  6a4806b243cd361b232fee77d06c5d00
- SHA1
  
  6c325dafa8e3397055936f1f5544f4e13bed4033
- SHA256
  
  8b8957750bbcf5df20035693402fd4a69466d3340d5503a062e1f2cc86d95d9d
- SHA512
  
  89ae06564176db12b45995be8373843d663ee0f2a3b130c6637213fac023784ee94f03c77db30b9b62913bedc27356726abc07c7af9cefb50465ae7efbc92604
- SSDEEP
  
  3072:abJ8MJJ/pZ22HPc+Q0j40UvWw48ddLM6hMLIokjwrhpcSvMpE1:s5XG20ka48ddLM6njNSR1
Score

8^/10

persistence
- Modifies AppInit DLL entries
  persistence
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2