0438d91cb16b7c60d622fb9e37913fe78b1a25152464d3e93c2ccc09a18cfa42 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

1b90e140c9feb7aa3cf764e6ee308ebd_JC.exe
Size

6.7MB
Sample

230918-vfzgksag5v
MD5

1b90e140c9feb7aa3cf764e6ee308ebd
SHA1

b3a15c91b672c74555fff0fcd0546b2b870c42ed
SHA256

0438d91cb16b7c60d622fb9e37913fe78b1a25152464d3e93c2ccc09a18cfa42
SHA512

e9072219074510ef0e792991f9faa02c628d5ae73d1c7d69e2c227810f5e2005cbd847228e65bc40470a61adcebf01976f18d336cb82fbad3826d48c2cac3abd
SSDEEP

49152:/xFqGRtp//Pg2+SpGX4SAtFPvApqDR+Jo/w4J1M9eeQ3NLI1GhPYCrjU+Yv:/v5FPvAEDI54CoNkilrYn

Score

6^/10

discovery

Malware Config

Targets

- Target
  
  1b90e140c9feb7aa3cf764e6ee308ebd_JC.exe
- Size
  
  6.7MB
- MD5
  
  1b90e140c9feb7aa3cf764e6ee308ebd
- SHA1
  
  b3a15c91b672c74555fff0fcd0546b2b870c42ed
- SHA256
  
  0438d91cb16b7c60d622fb9e37913fe78b1a25152464d3e93c2ccc09a18cfa42
- SHA512
  
  e9072219074510ef0e792991f9faa02c628d5ae73d1c7d69e2c227810f5e2005cbd847228e65bc40470a61adcebf01976f18d336cb82fbad3826d48c2cac3abd
- SSDEEP
  
  49152:/xFqGRtp//Pg2+SpGX4SAtFPvApqDR+Jo/w4J1M9eeQ3NLI1GhPYCrjU+Yv:/v5FPvAEDI54CoNkilrYn
Score

6^/10

discovery
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2