f81263446f7fd4ad2b3ec0184b48cb090163466857d1ccc62616b83ff4c1151d | Triage

Sharing

General

Target

f81263446f7fd4ad2b3ec0184b48cb090163466857d1ccc62616b83ff4c1151d_JC.exe
Size

531KB
Sample

230918-xwd7paee22
MD5

4546c3ec86280bb09a93feb4963db8b0
SHA1

8a515fb913c4ea6293b600cd91d90e247caf9eb0
SHA256

f81263446f7fd4ad2b3ec0184b48cb090163466857d1ccc62616b83ff4c1151d
SHA512

d223aaa76acdd57150a730e13c8fc12d9a8dc4ea689a3b7a0ad4f125a5e0cdb0fd4f6df8f5a89b042715884cd5e0ded2427f82567c5cdeef770d2f8437bfde38
SSDEEP

12288:vP7xef5dau9rUPDwrKrtojzpVQKPi42K:ndYdau9rClxGpVl9

Score

6^/10

persistence

Malware Config

Targets

- Target
  
  f81263446f7fd4ad2b3ec0184b48cb090163466857d1ccc62616b83ff4c1151d_JC.exe
- Size
  
  531KB
- MD5
  
  4546c3ec86280bb09a93feb4963db8b0
- SHA1
  
  8a515fb913c4ea6293b600cd91d90e247caf9eb0
- SHA256
  
  f81263446f7fd4ad2b3ec0184b48cb090163466857d1ccc62616b83ff4c1151d
- SHA512
  
  d223aaa76acdd57150a730e13c8fc12d9a8dc4ea689a3b7a0ad4f125a5e0cdb0fd4f6df8f5a89b042715884cd5e0ded2427f82567c5cdeef770d2f8437bfde38
- SSDEEP
  
  12288:vP7xef5dau9rUPDwrKrtojzpVQKPi42K:ndYdau9rClxGpVl9
Score

6^/10

persistence
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2