f182b0d737e7ea8ca6d783a09c18b178ba7c87ec600a0394fdca83431646ab65 | Triage

Sharing

General

Target

d4e88d18339a933f140d378b21152520_JC.exe
Size

80KB
Sample

230923-rbaqwahh23
MD5

d4e88d18339a933f140d378b21152520
SHA1

0e95217468263bfbae9c5f5743b81a0daf4d9a09
SHA256

f182b0d737e7ea8ca6d783a09c18b178ba7c87ec600a0394fdca83431646ab65
SHA512

388dc0fbc5d2806f3d149af9c7bd6fd87f529ab05227015874bc86f7869273409fd0f0964fc4bae4fd1193f03e60c3bb9711fcd87bdbcded3a866eaf9262e2ea
SSDEEP

1536:ABvTlJAHlAKjlwcWlYq8H15YMkhohBE8VGh:YilAKjlPWloHnUAEQGh

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  d4e88d18339a933f140d378b21152520_JC.exe
- Size
  
  80KB
- MD5
  
  d4e88d18339a933f140d378b21152520
- SHA1
  
  0e95217468263bfbae9c5f5743b81a0daf4d9a09
- SHA256
  
  f182b0d737e7ea8ca6d783a09c18b178ba7c87ec600a0394fdca83431646ab65
- SHA512
  
  388dc0fbc5d2806f3d149af9c7bd6fd87f529ab05227015874bc86f7869273409fd0f0964fc4bae4fd1193f03e60c3bb9711fcd87bdbcded3a866eaf9262e2ea
- SSDEEP
  
  1536:ABvTlJAHlAKjlwcWlYq8H15YMkhohBE8VGh:YilAKjlPWloHnUAEQGh
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2