ca02636042076c56214ba91960fce623beefa1f9ea78f1c2067ec7282938abd1 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

d5c8080c93e597de0d82285a99f80def_JC.exe
Size

275KB
Sample

230923-rbls5sga3v
MD5

d5c8080c93e597de0d82285a99f80def
SHA1

b531b72be21f58a5716281e1df54bd317cc87e23
SHA256

ca02636042076c56214ba91960fce623beefa1f9ea78f1c2067ec7282938abd1
SHA512

28959643f7b89a7c6dac4104f5efd7029022c0fc729740dee7e27a5d6657e88ae4110d6e4e6ba1e64c7e94a3187a5a4624a622ec4ad2174cc85b92105c022866
SSDEEP

6144:XDFvx32X5hgzL2V4cpC0L4AY7YWT63cpC0L4f:XVx3+uL2/p9i7drp9S

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  d5c8080c93e597de0d82285a99f80def_JC.exe
- Size
  
  275KB
- MD5
  
  d5c8080c93e597de0d82285a99f80def
- SHA1
  
  b531b72be21f58a5716281e1df54bd317cc87e23
- SHA256
  
  ca02636042076c56214ba91960fce623beefa1f9ea78f1c2067ec7282938abd1
- SHA512
  
  28959643f7b89a7c6dac4104f5efd7029022c0fc729740dee7e27a5d6657e88ae4110d6e4e6ba1e64c7e94a3187a5a4624a622ec4ad2174cc85b92105c022866
- SSDEEP
  
  6144:XDFvx32X5hgzL2V4cpC0L4AY7YWT63cpC0L4f:XVx3+uL2/p9i7drp9S
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2