101c588c896ded3d0c7e35995ed0faa5a325fc2aad4ccfb0fd923d172b2087bb | Triage

Sharing

General

Target

NEAS.93110296bac3927a7b0816eddb784680_JC.exe
Size

472KB
Sample

231104-yj9nhadh3y
MD5

93110296bac3927a7b0816eddb784680
SHA1

851f1d658ccf2abfbe0f41caf229560a9a6190b4
SHA256

101c588c896ded3d0c7e35995ed0faa5a325fc2aad4ccfb0fd923d172b2087bb
SHA512

ca82cf252107ef36d632cf8009624314da53bcd39bdd253e997218084781e4ea2bd1df4bd68b910bbff58c018f088daa543ee47284f597dacbde8ae9beeab448
SSDEEP

12288:oUPr5KByvNv54B9f01ZmHByvNv51lZlP5Po53rC1kWNH1yfMN1xCTr3huvca1khy:BPr5xvr4B9f01ZmQvr1vN

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.93110296bac3927a7b0816eddb784680_JC.exe
- Size
  
  472KB
- MD5
  
  93110296bac3927a7b0816eddb784680
- SHA1
  
  851f1d658ccf2abfbe0f41caf229560a9a6190b4
- SHA256
  
  101c588c896ded3d0c7e35995ed0faa5a325fc2aad4ccfb0fd923d172b2087bb
- SHA512
  
  ca82cf252107ef36d632cf8009624314da53bcd39bdd253e997218084781e4ea2bd1df4bd68b910bbff58c018f088daa543ee47284f597dacbde8ae9beeab448
- SSDEEP
  
  12288:oUPr5KByvNv54B9f01ZmHByvNv51lZlP5Po53rC1kWNH1yfMN1xCTr3huvca1khy:BPr5xvr4B9f01ZmQvr1vN
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2