7143953f7c632c59910c879ea92c0b34c67b2e0f2f60fffc160ab3cdcc065d66 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b241d3a39a45238fd86ff71d5f14e50e_JC.exe
Size

364KB
Sample

230917-v5etgaec69
MD5

b241d3a39a45238fd86ff71d5f14e50e
SHA1

4c8aeffc160b6a0d3a23688c9ce328814d1462e3
SHA256

7143953f7c632c59910c879ea92c0b34c67b2e0f2f60fffc160ab3cdcc065d66
SHA512

8a08473e885169cdabbca27f8c00e61bb470563f6fd11bda565ab8c0ed4161232f25810a71348a326adc5961866075a9716e4f283ec5239d034ce2cd5c81ac45
SSDEEP

6144:RCbFZsFj5tT3sFrqu+2KSnbXwBsFj5tT3sF:RCbXs15tLs93nbas15tLs

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  b241d3a39a45238fd86ff71d5f14e50e_JC.exe
- Size
  
  364KB
- MD5
  
  b241d3a39a45238fd86ff71d5f14e50e
- SHA1
  
  4c8aeffc160b6a0d3a23688c9ce328814d1462e3
- SHA256
  
  7143953f7c632c59910c879ea92c0b34c67b2e0f2f60fffc160ab3cdcc065d66
- SHA512
  
  8a08473e885169cdabbca27f8c00e61bb470563f6fd11bda565ab8c0ed4161232f25810a71348a326adc5961866075a9716e4f283ec5239d034ce2cd5c81ac45
- SSDEEP
  
  6144:RCbFZsFj5tT3sFrqu+2KSnbXwBsFj5tT3sF:RCbXs15tLs93nbas15tLs
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2