Overview

overview

8

Static

static

1

jk.msi

windows7-x64

8

jk.msi

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

  • Target

    jk.dll

  • Size

    13.7MB

  • Sample

    230921-q7hkxsgd7s

  • MD5

    61422a35afb21b453b824c22f44501ac

  • SHA1

    c7856d8b0e58184c9517985bf08a66d3d2355f81

  • SHA256

    02fe5666613f62c6e067b33f7194b2e1f9cf523cc47e25d0f82a8a001471f829

  • SHA512

    e5eaaafba7b0c68ea3f8c2330d3817a57b43a6aed050b3ec4405b5bea31430e6687d65e1a8988963cc926c26e822f593b8faf6aac514cecf36d2973659f1768d

  • SSDEEP

    196608:NkUKpnSrFjkUKpnRkUKpnjkUKpnukUKpnN:jMnSrMnvMnNMnkMnN

Score
8/10
persistence

Malware Config

Targets

    • Target

      jk.dll

    • Size

      13.7MB

    • MD5

      61422a35afb21b453b824c22f44501ac

    • SHA1

      c7856d8b0e58184c9517985bf08a66d3d2355f81

    • SHA256

      02fe5666613f62c6e067b33f7194b2e1f9cf523cc47e25d0f82a8a001471f829

    • SHA512

      e5eaaafba7b0c68ea3f8c2330d3817a57b43a6aed050b3ec4405b5bea31430e6687d65e1a8988963cc926c26e822f593b8faf6aac514cecf36d2973659f1768d

    • SSDEEP

      196608:NkUKpnSrFjkUKpnRkUKpnjkUKpnukUKpnN:jMnSrMnvMnNMnkMnN

    Score
    8/10
    persistence

    • Sets service image path in registry

      persistence

    • Executes dropped EXE

    • Loads dropped DLL

    • Registers COM server for autorun

      persistence

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks