c83664c972a567ad20900c5557a706bf65601d7d518edf0e7d90943b01f804e8 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0480fda2a525b12d9790ede718da1030_JC.exe
Size

909KB
Sample

231010-z795lsbg6v
MD5

0480fda2a525b12d9790ede718da1030
SHA1

1391760fb6316ed5d37774cca221c6754d5af304
SHA256

c83664c972a567ad20900c5557a706bf65601d7d518edf0e7d90943b01f804e8
SHA512

cd48ab8d41cf3d707e8def6c5f27c60d167ff8d6af9b24d916332428cce753138dcb18d4386e561e3ebbd1df9fa635a99ad211a1343e713b5a0409ad221b242b
SSDEEP

3072:MGjhaq5iL0beJQZt32wLji5DlsODxRPNDkjmHzW9hUd56JsuBSjwGPmO12i1DzbX:Hha8iAx+1zwjmHd6vB/jO11zk5m

Score

6^/10

persistence

Malware Config

Targets

- Target
  
  0480fda2a525b12d9790ede718da1030_JC.exe
- Size
  
  909KB
- MD5
  
  0480fda2a525b12d9790ede718da1030
- SHA1
  
  1391760fb6316ed5d37774cca221c6754d5af304
- SHA256
  
  c83664c972a567ad20900c5557a706bf65601d7d518edf0e7d90943b01f804e8
- SHA512
  
  cd48ab8d41cf3d707e8def6c5f27c60d167ff8d6af9b24d916332428cce753138dcb18d4386e561e3ebbd1df9fa635a99ad211a1343e713b5a0409ad221b242b
- SSDEEP
  
  3072:MGjhaq5iL0beJQZt32wLji5DlsODxRPNDkjmHzW9hUd56JsuBSjwGPmO12i1DzbX:Hha8iAx+1zwjmHd6vB/jO11zk5m
Score

6^/10

persistence
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2