442fd1539f0cefb2ba79d047162f17aa4fdbcc12fcd43f1039abb826221aceca | Triage

Sharing

General

Target

a8a307d0661cd298ded1c6484efe6384_JC.exe
Size

192KB
Sample

231003-sgg8kscd5t
MD5

a8a307d0661cd298ded1c6484efe6384
SHA1

7919593e1428d6fc20cf1f705f4de5143ea2d8e8
SHA256

442fd1539f0cefb2ba79d047162f17aa4fdbcc12fcd43f1039abb826221aceca
SHA512

93590cd1b91a4580fbaea1c031ccc51ec2d36ee01cf934f868b198bdd0e2edd8f17ad45137a804e418b76ccbe7eaaec53490185e85fd2d1635361cef07cd3ee9
SSDEEP

3072:1MaNmbOfbnTW0M/cbsiVygzL20WKFcp9jRV5C/8qy4p2Y7YWlt6o:SaNmsbnTW0M0bkgzL2V4cpC0L4AY7YWx

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  a8a307d0661cd298ded1c6484efe6384_JC.exe
- Size
  
  192KB
- MD5
  
  a8a307d0661cd298ded1c6484efe6384
- SHA1
  
  7919593e1428d6fc20cf1f705f4de5143ea2d8e8
- SHA256
  
  442fd1539f0cefb2ba79d047162f17aa4fdbcc12fcd43f1039abb826221aceca
- SHA512
  
  93590cd1b91a4580fbaea1c031ccc51ec2d36ee01cf934f868b198bdd0e2edd8f17ad45137a804e418b76ccbe7eaaec53490185e85fd2d1635361cef07cd3ee9
- SSDEEP
  
  3072:1MaNmbOfbnTW0M/cbsiVygzL20WKFcp9jRV5C/8qy4p2Y7YWlt6o:SaNmsbnTW0M0bkgzL2V4cpC0L4AY7YWx
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2