4661c96a7e41faeaca5248e7c6ad3bc7ef746113feea3ec23d332313305aa4f7 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

NEAS.a45cd8b7830693b8358e0a9b8d1deed0_JC.exe
Size

324KB
Sample

231104-ljef5seg5z
MD5

a45cd8b7830693b8358e0a9b8d1deed0
SHA1

12ad99e3895be02a61cc05e0707a0d2c09549cee
SHA256

4661c96a7e41faeaca5248e7c6ad3bc7ef746113feea3ec23d332313305aa4f7
SHA512

54d303f0606b10ff06f511745418c04c21c51924d8a8a008bd105544ef1296c2eb3dd389f993c12f3812deeaf4a3ebb71d06bd2f99544e00801e3c1ee67f44d4
SSDEEP

6144:Oej3/wlUOJATJPc827snplX7bP4N9e7FypI8ET+pXfF:Oo34VJATJvpPpyaspPF

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.a45cd8b7830693b8358e0a9b8d1deed0_JC.exe
- Size
  
  324KB
- MD5
  
  a45cd8b7830693b8358e0a9b8d1deed0
- SHA1
  
  12ad99e3895be02a61cc05e0707a0d2c09549cee
- SHA256
  
  4661c96a7e41faeaca5248e7c6ad3bc7ef746113feea3ec23d332313305aa4f7
- SHA512
  
  54d303f0606b10ff06f511745418c04c21c51924d8a8a008bd105544ef1296c2eb3dd389f993c12f3812deeaf4a3ebb71d06bd2f99544e00801e3c1ee67f44d4
- SSDEEP
  
  6144:Oej3/wlUOJATJPc827snplX7bP4N9e7FypI8ET+pXfF:Oo34VJATJvpPpyaspPF
Score

8^/10

persistence
- Modifies AppInit DLL entries
  persistence
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2