cf7a08e3c2b9e5e7508d39dc2e978b0f59b9e60842f480ef9e2fa637b65d52d0 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

NEAS.fe2e297b5137866e0731f799c0e5f070_JC.exe
Size

62KB
Sample

231105-e61jkaah5w
MD5

fe2e297b5137866e0731f799c0e5f070
SHA1

600a110904d2093e3151b8150b442e9fa7199a5a
SHA256

cf7a08e3c2b9e5e7508d39dc2e978b0f59b9e60842f480ef9e2fa637b65d52d0
SHA512

23d3b2aca2c864b7157a15dc7c9385cac0176c55f037016d871be8f5c4754587faaab3f6c3b6b8c7ecf2718d6b02f9a61293dfb56dedd490a0ea2c94b9ef5ed1
SSDEEP

1536:y4QQ6NSyM61l19piO+LV8YEoI/EU9RUe4mCaY7+Knx:y4X6NSyfnpijeYEoIcq4wk+Knx

Score

7^/10

persistence upx

Malware Config

Targets

- Target
  
  NEAS.fe2e297b5137866e0731f799c0e5f070_JC.exe
- Size
  
  62KB
- MD5
  
  fe2e297b5137866e0731f799c0e5f070
- SHA1
  
  600a110904d2093e3151b8150b442e9fa7199a5a
- SHA256
  
  cf7a08e3c2b9e5e7508d39dc2e978b0f59b9e60842f480ef9e2fa637b65d52d0
- SHA512
  
  23d3b2aca2c864b7157a15dc7c9385cac0176c55f037016d871be8f5c4754587faaab3f6c3b6b8c7ecf2718d6b02f9a61293dfb56dedd490a0ea2c94b9ef5ed1
- SSDEEP
  
  1536:y4QQ6NSyM61l19piO+LV8YEoI/EU9RUe4mCaY7+Knx:y4X6NSyfnpijeYEoIcq4wk+Knx
Score

7^/10

persistence upx
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2