0640b791e9fbea95cf0efdc8724fc69840af3b6d2227d591c53a0e8cd363db7a | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2ea36e338876a287619a7377b1e724c4_JC.exe
Size

100KB
Sample

231011-1skf3seh6s
MD5

2ea36e338876a287619a7377b1e724c4
SHA1

0992cfea4e43efcbcdba6f7f07331d7032d95c48
SHA256

0640b791e9fbea95cf0efdc8724fc69840af3b6d2227d591c53a0e8cd363db7a
SHA512

6e1c86f991e947fdcc4d7a0f5da4e1d6ddf250883f4a6af4fbc8813eba3aeaefce4d871170dc7e42da340dcd12e156623a706248b5f12a2cfb178ae32281b2ef
SSDEEP

3072:IRKpW+/Yed7oxxb4dfieE9IMFR8n5j8YD:IaL/bBaq9E9fFR6jp

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  2ea36e338876a287619a7377b1e724c4_JC.exe
- Size
  
  100KB
- MD5
  
  2ea36e338876a287619a7377b1e724c4
- SHA1
  
  0992cfea4e43efcbcdba6f7f07331d7032d95c48
- SHA256
  
  0640b791e9fbea95cf0efdc8724fc69840af3b6d2227d591c53a0e8cd363db7a
- SHA512
  
  6e1c86f991e947fdcc4d7a0f5da4e1d6ddf250883f4a6af4fbc8813eba3aeaefce4d871170dc7e42da340dcd12e156623a706248b5f12a2cfb178ae32281b2ef
- SSDEEP
  
  3072:IRKpW+/Yed7oxxb4dfieE9IMFR8n5j8YD:IaL/bBaq9E9fFR6jp
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2