74f0ee8a50509f9176758f036392020fd159605e4e9e08dfabc52fdb6260f77e | Triage

Sharing

General

Target

4486778254c8d3c5a563628f550164e7_JC.exe
Size

240KB
Sample

230917-nxz14scf62
MD5

4486778254c8d3c5a563628f550164e7
SHA1

9ddda4faa1e27b864af6465275a066582b93c1ee
SHA256

74f0ee8a50509f9176758f036392020fd159605e4e9e08dfabc52fdb6260f77e
SHA512

2a93813512cb6bf11b4cff2e4c8a7a23890969a94b8a02ff5c757ed6ba30892d6ecc2d7df247ff3a0a26c1da0c42f94cb1e0ce8f7d150bc0de2d586d94aff164
SSDEEP

6144:xdw+b08ioAEcAJN+SYSUZCb6M3W8DStQUkA1FiHwSD:xBPVAtycSly8DSUA1YHVD

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  4486778254c8d3c5a563628f550164e7_JC.exe
- Size
  
  240KB
- MD5
  
  4486778254c8d3c5a563628f550164e7
- SHA1
  
  9ddda4faa1e27b864af6465275a066582b93c1ee
- SHA256
  
  74f0ee8a50509f9176758f036392020fd159605e4e9e08dfabc52fdb6260f77e
- SHA512
  
  2a93813512cb6bf11b4cff2e4c8a7a23890969a94b8a02ff5c757ed6ba30892d6ecc2d7df247ff3a0a26c1da0c42f94cb1e0ce8f7d150bc0de2d586d94aff164
- SSDEEP
  
  6144:xdw+b08ioAEcAJN+SYSUZCb6M3W8DStQUkA1FiHwSD:xBPVAtycSly8DSUA1YHVD
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2