aa0f07b7b87cb06abb1032257405b523717f35111797410b85f2aeebe35ff9ca | Triage

Sharing

General

Target

ee2ce91adb072ce9c1fc4a758db00276_JC.exe
Size

3.2MB
Sample

231004-xp6claec7w
MD5

ee2ce91adb072ce9c1fc4a758db00276
SHA1

3f2b7587a77d5af186f0511fe89d8b4c1cf41b4b
SHA256

aa0f07b7b87cb06abb1032257405b523717f35111797410b85f2aeebe35ff9ca
SHA512

495c81420342e9966322b7053bea0c96269c19c5fd57b22873f46c62c55ff3942585dce8c894b7ccb48c9de3095591e6821e6fefb9805463c9a5e9513ff48e9c
SSDEEP

98304:blBFLPj3JStuv40ar7zrbDlsa2VIlPWYv1NTPKnllYUugy:blBFLPj3JStuv40ar7zrbDlsa2VIlPW+

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  ee2ce91adb072ce9c1fc4a758db00276_JC.exe
- Size
  
  3.2MB
- MD5
  
  ee2ce91adb072ce9c1fc4a758db00276
- SHA1
  
  3f2b7587a77d5af186f0511fe89d8b4c1cf41b4b
- SHA256
  
  aa0f07b7b87cb06abb1032257405b523717f35111797410b85f2aeebe35ff9ca
- SHA512
  
  495c81420342e9966322b7053bea0c96269c19c5fd57b22873f46c62c55ff3942585dce8c894b7ccb48c9de3095591e6821e6fefb9805463c9a5e9513ff48e9c
- SSDEEP
  
  98304:blBFLPj3JStuv40ar7zrbDlsa2VIlPWYv1NTPKnllYUugy:blBFLPj3JStuv40ar7zrbDlsa2VIlPW+
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2