79d6ba7f0d442244468123fa7caa63437a74603871688b4a0d8c4f86131dffb6 | Triage

Submit
Reports

Overview

overview

8

Static

static

7

NEAS.76de4...JC.exe

windows7-x64

8

NEAS.76de4...JC.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

Target

NEAS.76de425cb9aaa206b2824cc5bf25a100_JC.exe
Size

997KB
Sample

231104-ytqy5sgc36
MD5

76de425cb9aaa206b2824cc5bf25a100
SHA1

33d81977e6d22dc3120507b7c3a96f2d9a189222
SHA256

79d6ba7f0d442244468123fa7caa63437a74603871688b4a0d8c4f86131dffb6
SHA512

c23b8c116bce89852a1a0ae5e201eca1c46f7c346cc4ee5e14500983bfe18aa941c3c0e83c900946c9cf7711692d4e59145efa81865f7df1a4844a4a01244229
SSDEEP

24576:5s8BT50B10jxvu1ldYzHt/PHf77nmV4MlvZOfL07fWRf1rEH7Py:mHB18vMlqbt/P/77mV4MlROfITWL

Score

8^/10

persistence upx

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

NEAS.76de425cb9aaa206b2824cc5bf25a100_JC.exe

Resource

win7-20231020-en

persistence upx

windows7-x64

12 signatures

150 seconds

Behavioral task

behavioral2

Sample

NEAS.76de425cb9aaa206b2824cc5bf25a100_JC.exe

Resource

win10v2004-20231023-en

windows10-2004-x64

7 signatures

150 seconds

Malware Config

Targets

- Target
  
  NEAS.76de425cb9aaa206b2824cc5bf25a100_JC.exe
- Size
  
  997KB
- MD5
  
  76de425cb9aaa206b2824cc5bf25a100
- SHA1
  
  33d81977e6d22dc3120507b7c3a96f2d9a189222
- SHA256
  
  79d6ba7f0d442244468123fa7caa63437a74603871688b4a0d8c4f86131dffb6
- SHA512
  
  c23b8c116bce89852a1a0ae5e201eca1c46f7c346cc4ee5e14500983bfe18aa941c3c0e83c900946c9cf7711692d4e59145efa81865f7df1a4844a4a01244229
- SSDEEP
  
  24576:5s8BT50B10jxvu1ldYzHt/PHf77nmV4MlvZOfL07fWRf1rEH7Py:mHB18vMlqbt/P/77mV4MlROfITWL
Score

8^/10

persistence upx
- Modifies AppInit DLL entries
  persistence
- ACProtect 1.3x - 1.4x DLL software
  Detects file using ACProtect software.
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy