50d402f7677db8296f8064e5431f2acf4d27e39b70534b5180a6ac7bb1401cfa | Triage

Sharing

General

Target

c5f48f68d76e8288cef6a2aa88cdbea6_JC.exe
Size

430KB
Sample

230930-pzp5csca7s
MD5

c5f48f68d76e8288cef6a2aa88cdbea6
SHA1

6ce934d16cb102b5d7ea74b54cc6fca6b9b2229d
SHA256

50d402f7677db8296f8064e5431f2acf4d27e39b70534b5180a6ac7bb1401cfa
SHA512

d83ae34a2647291053bee33c3c3fba05974d931ad28a2f0c874725ec40b39bbe974c8e4f4f43b602b59ae67ba63a880d55554bc2dc282faa1712112b45c6400f
SSDEEP

3072:Pt5tvhjqtn0wYssDc5xdVAURfE+HAokWmvEie0RFz3yE2ZwVh16Mz7GFD0AlWsnf:PLb2mAxdRs+HLlD0rN2ZwVht740Psz

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  c5f48f68d76e8288cef6a2aa88cdbea6_JC.exe
- Size
  
  430KB
- MD5
  
  c5f48f68d76e8288cef6a2aa88cdbea6
- SHA1
  
  6ce934d16cb102b5d7ea74b54cc6fca6b9b2229d
- SHA256
  
  50d402f7677db8296f8064e5431f2acf4d27e39b70534b5180a6ac7bb1401cfa
- SHA512
  
  d83ae34a2647291053bee33c3c3fba05974d931ad28a2f0c874725ec40b39bbe974c8e4f4f43b602b59ae67ba63a880d55554bc2dc282faa1712112b45c6400f
- SSDEEP
  
  3072:Pt5tvhjqtn0wYssDc5xdVAURfE+HAokWmvEie0RFz3yE2ZwVh16Mz7GFD0AlWsnf:PLb2mAxdRs+HLlD0rN2ZwVht740Psz
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2