881019f1b2963b7e243f93a4fa7a9fd718c39ea6bb805406c6ee56ce53fdbc74 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0a6f1cff181ff6exe_JC.exe
Size

168KB
Sample

230713-xwhj4sbc51
MD5

0a6f1cff181ff6401fc7e792ebaff453
SHA1

6eccf75bc64d86eb89ac747cbde0c367c0b79aee
SHA256

881019f1b2963b7e243f93a4fa7a9fd718c39ea6bb805406c6ee56ce53fdbc74
SHA512

e778fed0b708303c6d4c9b6654a4346c3dd9fe5600340f8b8abb14691a6f6cbf2228954e69c5a74d7b36c2b6e865e7c0e2a250e22f6a95edd1d17fe4e19b4485
SSDEEP

1536:1EGh0odlq5IRVhNJ5Qef7BudMeNzVg3Ve+rrS2:1EGh0odlqOPOe2MUVg3Ve+rX

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  0a6f1cff181ff6exe_JC.exe
- Size
  
  168KB
- MD5
  
  0a6f1cff181ff6401fc7e792ebaff453
- SHA1
  
  6eccf75bc64d86eb89ac747cbde0c367c0b79aee
- SHA256
  
  881019f1b2963b7e243f93a4fa7a9fd718c39ea6bb805406c6ee56ce53fdbc74
- SHA512
  
  e778fed0b708303c6d4c9b6654a4346c3dd9fe5600340f8b8abb14691a6f6cbf2228954e69c5a74d7b36c2b6e865e7c0e2a250e22f6a95edd1d17fe4e19b4485
- SSDEEP
  
  1536:1EGh0odlq5IRVhNJ5Qef7BudMeNzVg3Ve+rrS2:1EGh0odlqOPOe2MUVg3Ve+rX
Score

8^/10

persistence
- Modifies Installed Components in the registry
  persistence
- Deletes itself
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2