30efd73cff7bcb3de75f2e35bd54ef07116517496f2346c7eb7a916f4ffb1905 | Triage

Sharing

General

Target

e5f638dbf7300580f505248e9c65150e_JC.exe
Size

45KB
Sample

231001-ykgdcaee74
MD5

e5f638dbf7300580f505248e9c65150e
SHA1

d80207afc0a7ffee92a532bf5ee2a88ccba8c531
SHA256

30efd73cff7bcb3de75f2e35bd54ef07116517496f2346c7eb7a916f4ffb1905
SHA512

9e8dbcf2d90adb6a61ae8ba19de7af62844f2fd15aec04ee9c4c1bd5bd0f127e4234b7cb5949712040ccc88db398858389a15a5093831f0c9c35a76e19592729
SSDEEP

768:75Z7WuGE3EdAvyyGTQHsXtPnQJAueyjkaVIMEDr/IiB7FiR/1H5/y:HvEdw00HsXlhueKhVIMEDjZBwL

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  e5f638dbf7300580f505248e9c65150e_JC.exe
- Size
  
  45KB
- MD5
  
  e5f638dbf7300580f505248e9c65150e
- SHA1
  
  d80207afc0a7ffee92a532bf5ee2a88ccba8c531
- SHA256
  
  30efd73cff7bcb3de75f2e35bd54ef07116517496f2346c7eb7a916f4ffb1905
- SHA512
  
  9e8dbcf2d90adb6a61ae8ba19de7af62844f2fd15aec04ee9c4c1bd5bd0f127e4234b7cb5949712040ccc88db398858389a15a5093831f0c9c35a76e19592729
- SSDEEP
  
  768:75Z7WuGE3EdAvyyGTQHsXtPnQJAueyjkaVIMEDr/IiB7FiR/1H5/y:HvEdw00HsXlhueKhVIMEDjZBwL
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2