cd1b6e522129e9ddc7e5aaeef63b238f277ac79960a9523f689672f74323f8fb | Triage

Sharing

General

Target

NEAS.542abc3412c707b1e34d9937c1a9cb20_JC.exe
Size

405KB
Sample

231104-zj2tbsgg97
MD5

542abc3412c707b1e34d9937c1a9cb20
SHA1

5b432b907c788a519ffadabc003a23da3e14f270
SHA256

cd1b6e522129e9ddc7e5aaeef63b238f277ac79960a9523f689672f74323f8fb
SHA512

b8a84f6d0b0aa099ce54f48ba19cf0154d5624513ae88d3c8b98147d6534cf4631c0aafa9adacb388c96290a00885021597946614e5a34b97ab63836d689d4b5
SSDEEP

6144:g54I6/EEd7J/oHeN+uqljd3rKzwN8Jlljd3njPX9ZAk3fig:K4I6cINQ4+XjpKXjtjP9Ztx

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.542abc3412c707b1e34d9937c1a9cb20_JC.exe
- Size
  
  405KB
- MD5
  
  542abc3412c707b1e34d9937c1a9cb20
- SHA1
  
  5b432b907c788a519ffadabc003a23da3e14f270
- SHA256
  
  cd1b6e522129e9ddc7e5aaeef63b238f277ac79960a9523f689672f74323f8fb
- SHA512
  
  b8a84f6d0b0aa099ce54f48ba19cf0154d5624513ae88d3c8b98147d6534cf4631c0aafa9adacb388c96290a00885021597946614e5a34b97ab63836d689d4b5
- SSDEEP
  
  6144:g54I6/EEd7J/oHeN+uqljd3rKzwN8Jlljd3njPX9ZAk3fig:K4I6cINQ4+XjpKXjtjP9Ztx
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2