9121d929344af6adf9a1dbdc43f4d20a3005aaddc350ceaa97033848f7a81429 | Triage

Sharing

General

Target

NEAS.b18d0f9c7ca3a9e16190d5540cdf7340_JC.exe
Size

150KB
Sample

231105-cm6v5abe79
MD5

b18d0f9c7ca3a9e16190d5540cdf7340
SHA1

2082cfff973717b98503822abcbbf55d3b2028a2
SHA256

9121d929344af6adf9a1dbdc43f4d20a3005aaddc350ceaa97033848f7a81429
SHA512

e9d3a3e3f7175f4b1ae884a314979e21e140108d9f13e9dd3ee5c23776b9fa3999bdf4959b590bb39a3e6322416044b95c55d02b28fd283ce1ecd2b8fc17a9e0
SSDEEP

3072:4kmdFupAeTTMlDdj3kFGwMTO9XS9nWNSwIvkI9q0cO:4kmmppUSF2TO982IZz

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.b18d0f9c7ca3a9e16190d5540cdf7340_JC.exe
- Size
  
  150KB
- MD5
  
  b18d0f9c7ca3a9e16190d5540cdf7340
- SHA1
  
  2082cfff973717b98503822abcbbf55d3b2028a2
- SHA256
  
  9121d929344af6adf9a1dbdc43f4d20a3005aaddc350ceaa97033848f7a81429
- SHA512
  
  e9d3a3e3f7175f4b1ae884a314979e21e140108d9f13e9dd3ee5c23776b9fa3999bdf4959b590bb39a3e6322416044b95c55d02b28fd283ce1ecd2b8fc17a9e0
- SSDEEP
  
  3072:4kmdFupAeTTMlDdj3kFGwMTO9XS9nWNSwIvkI9q0cO:4kmmppUSF2TO982IZz
Score

8^/10

persistence
- Modifies AppInit DLL entries
  persistence
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2