faf8a3d9959499dc38996687899c27f32856ad93bf4e96d3c86f9e3cb10d263b | Triage

Sharing

General

Target

5fb89c5771d1d404b65d39b6e657d71d_JC.exe
Size

91KB
Sample

230923-nznqvsgh43
MD5

5fb89c5771d1d404b65d39b6e657d71d
SHA1

b30656304e9ffe46cae84ef445897c3e37192c87
SHA256

faf8a3d9959499dc38996687899c27f32856ad93bf4e96d3c86f9e3cb10d263b
SHA512

85d3aea4e5c8ce5155e52a6471d7af593fc868a69c5b247bf512fde24b8ef95674d94a260f99175745324884fb8795970c0be364f2a3d46240ec0d78aab38865
SSDEEP

1536:DB10bbqm1YQTVDzWGPNIz4ASFN73BWstwJQwT93ia4uwW:mqm1YQTZhPN+4AGXwJQq313

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  5fb89c5771d1d404b65d39b6e657d71d_JC.exe
- Size
  
  91KB
- MD5
  
  5fb89c5771d1d404b65d39b6e657d71d
- SHA1
  
  b30656304e9ffe46cae84ef445897c3e37192c87
- SHA256
  
  faf8a3d9959499dc38996687899c27f32856ad93bf4e96d3c86f9e3cb10d263b
- SHA512
  
  85d3aea4e5c8ce5155e52a6471d7af593fc868a69c5b247bf512fde24b8ef95674d94a260f99175745324884fb8795970c0be364f2a3d46240ec0d78aab38865
- SSDEEP
  
  1536:DB10bbqm1YQTVDzWGPNIz4ASFN73BWstwJQwT93ia4uwW:mqm1YQTZhPN+4AGXwJQq313
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2