cf47f73c49644d727931583d1519a5ad80ddd06e248b12073b0680b719f2e2f0 | Triage

Sharing

General

Target

b314f151a717b37bff593910338ea8fb_JC.exe
Size

407KB
Sample

231010-1hbfeseg75
MD5

b314f151a717b37bff593910338ea8fb
SHA1

4cdb38b5aaa9999027ef0d21cfaa785483236535
SHA256

cf47f73c49644d727931583d1519a5ad80ddd06e248b12073b0680b719f2e2f0
SHA512

c2f5a905df56529d26040a5621922d5ea02f1630f343356b48cfe9432d753c721549699a44e14506760e625f2c4cf67de380c06dee7c2dec7a505576b9a9d81e
SSDEEP

12288:zqsJO/awrSmfyiPFg8prNdw+C7797TnPtLU8deJUP//zk9FGB:7JO/awrSmfyiPFg8prNdw+C7797TnPt1

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  b314f151a717b37bff593910338ea8fb_JC.exe
- Size
  
  407KB
- MD5
  
  b314f151a717b37bff593910338ea8fb
- SHA1
  
  4cdb38b5aaa9999027ef0d21cfaa785483236535
- SHA256
  
  cf47f73c49644d727931583d1519a5ad80ddd06e248b12073b0680b719f2e2f0
- SHA512
  
  c2f5a905df56529d26040a5621922d5ea02f1630f343356b48cfe9432d753c721549699a44e14506760e625f2c4cf67de380c06dee7c2dec7a505576b9a9d81e
- SSDEEP
  
  12288:zqsJO/awrSmfyiPFg8prNdw+C7797TnPtLU8deJUP//zk9FGB:7JO/awrSmfyiPFg8prNdw+C7797TnPt1
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2