ab2e83e8b0bf7211df3ecb26db55e32d760a13ff8b3282721b40010ece185a8e | Triage

Sharing

Copy URL Twitter E-mail

General

Target

440fd6c8647f1eb234a89fd8ded2d94d_JC.exe
Size

72KB
Sample

231010-1mg4rsdd3v
MD5

440fd6c8647f1eb234a89fd8ded2d94d
SHA1

5d5c3397c84e85570542c7ec3f91a1633dbe64ce
SHA256

ab2e83e8b0bf7211df3ecb26db55e32d760a13ff8b3282721b40010ece185a8e
SHA512

a4f26ac7b06fe5dd24777968bf8c8a316b71bf9c1c669d2f442335dfa7145389e2e189c7c1cf60fb92f6f7ef75fe9895bcf9176792d8309d0d7ffcb5eafc3936
SSDEEP

1536:NaQsFrREO7Pb0ZKkPIGrs6CCCOlkl6vDqhQMIYqGr:FvO7+gylkEVhFGr

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  440fd6c8647f1eb234a89fd8ded2d94d_JC.exe
- Size
  
  72KB
- MD5
  
  440fd6c8647f1eb234a89fd8ded2d94d
- SHA1
  
  5d5c3397c84e85570542c7ec3f91a1633dbe64ce
- SHA256
  
  ab2e83e8b0bf7211df3ecb26db55e32d760a13ff8b3282721b40010ece185a8e
- SHA512
  
  a4f26ac7b06fe5dd24777968bf8c8a316b71bf9c1c669d2f442335dfa7145389e2e189c7c1cf60fb92f6f7ef75fe9895bcf9176792d8309d0d7ffcb5eafc3936
- SSDEEP
  
  1536:NaQsFrREO7Pb0ZKkPIGrs6CCCOlkl6vDqhQMIYqGr:FvO7+gylkEVhFGr
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2