b9e2bd750802a6daaca1b743e9f3f7a85e6eabd1a488d9b247d9952cbadae6c4 | Triage

Sharing

General

Target

c7beb3581b58ec69d2f5ee6129979154_JC.exe
Size

109KB
Sample

230917-pmw25sch74
MD5

c7beb3581b58ec69d2f5ee6129979154
SHA1

dad6b19452406e18559ec481e1bb9ea2f05b6453
SHA256

b9e2bd750802a6daaca1b743e9f3f7a85e6eabd1a488d9b247d9952cbadae6c4
SHA512

dbc724034334ce927f531eb35928d77ece76b30638d718426447091ee2013dc1342f18eefa327f78f810f49e20c8d8ee9fc34718d8b73313ed905f19b1960632
SSDEEP

3072:4FxYLDVSY5bX7rUZ+a+RnZR2J9FLCqwzBu1DjHLMVDqqkSpR:4FGVS2bX7za+b4J91wtu1DjrFqhz

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  c7beb3581b58ec69d2f5ee6129979154_JC.exe
- Size
  
  109KB
- MD5
  
  c7beb3581b58ec69d2f5ee6129979154
- SHA1
  
  dad6b19452406e18559ec481e1bb9ea2f05b6453
- SHA256
  
  b9e2bd750802a6daaca1b743e9f3f7a85e6eabd1a488d9b247d9952cbadae6c4
- SHA512
  
  dbc724034334ce927f531eb35928d77ece76b30638d718426447091ee2013dc1342f18eefa327f78f810f49e20c8d8ee9fc34718d8b73313ed905f19b1960632
- SSDEEP
  
  3072:4FxYLDVSY5bX7rUZ+a+RnZR2J9FLCqwzBu1DjHLMVDqqkSpR:4FGVS2bX7za+b4J91wtu1DjrFqhz
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2