a4b41938356aa889da1374e95f1763071ba0f4b18e28c8c385949801ef1a1bd8 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

dccfe1b176c7fc78ead0da43e3047d47_JC.exe
Size

97KB
Sample

231010-1cfsyscb8x
MD5

dccfe1b176c7fc78ead0da43e3047d47
SHA1

e027245f2d21072bf428bbac4e43b4f253a65b23
SHA256

a4b41938356aa889da1374e95f1763071ba0f4b18e28c8c385949801ef1a1bd8
SHA512

54c593641a31c2501f05c01cb0cfd1907dec92a5d412df84383612981399462b332e996d6a3777caaa372c07281d8b76d7f20a6ed780c878127908686b39697c
SSDEEP

1536:TaiqH1s+kCtrA2UMT0mTFibDKa1Xm4EH5tQ8I3JTLTT9hkgiWqfY+7/Ll3hU:O1B31bdBob2QXsZC8I3hTYxWo7/BRU

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  dccfe1b176c7fc78ead0da43e3047d47_JC.exe
- Size
  
  97KB
- MD5
  
  dccfe1b176c7fc78ead0da43e3047d47
- SHA1
  
  e027245f2d21072bf428bbac4e43b4f253a65b23
- SHA256
  
  a4b41938356aa889da1374e95f1763071ba0f4b18e28c8c385949801ef1a1bd8
- SHA512
  
  54c593641a31c2501f05c01cb0cfd1907dec92a5d412df84383612981399462b332e996d6a3777caaa372c07281d8b76d7f20a6ed780c878127908686b39697c
- SSDEEP
  
  1536:TaiqH1s+kCtrA2UMT0mTFibDKa1Xm4EH5tQ8I3JTLTT9hkgiWqfY+7/Ll3hU:O1B31bdBob2QXsZC8I3hTYxWo7/BRU
Score

10^/10

persistence
- Modifies WinLogon for persistence
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Winlogon Helper DLL

Privilege Escalation

Boot or Logon Autostart Execution

Winlogon Helper DLL

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2