ca94ff779cc84bbb1df3933f087778e23af0519a119bc268a1aee78a203adf8d | Triage

Sharing

General

Target

f66cd965006e38ef70dd9fb3c7b91f49_JC.exe
Size

325KB
Sample

231011-2bqr7sab54
MD5

f66cd965006e38ef70dd9fb3c7b91f49
SHA1

e0036e9ad3187886ab8c7e3b7479275cfb8c2297
SHA256

ca94ff779cc84bbb1df3933f087778e23af0519a119bc268a1aee78a203adf8d
SHA512

75d29d50b59ba121ee130c2853e9b69d0257896696a52683a06f52fc4ade892584c014235e0b01c64cb569f70e9c54df4c2c7a285d2829bbf3346cfee32e150e
SSDEEP

6144:POLzcS0Rs+Hsohxd2Quohdbd0zscwIGUKfvUJ43ewmxteZekR+1b/KVC0CLzg:6cXHxdzZdxGwsYIL0

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  f66cd965006e38ef70dd9fb3c7b91f49_JC.exe
- Size
  
  325KB
- MD5
  
  f66cd965006e38ef70dd9fb3c7b91f49
- SHA1
  
  e0036e9ad3187886ab8c7e3b7479275cfb8c2297
- SHA256
  
  ca94ff779cc84bbb1df3933f087778e23af0519a119bc268a1aee78a203adf8d
- SHA512
  
  75d29d50b59ba121ee130c2853e9b69d0257896696a52683a06f52fc4ade892584c014235e0b01c64cb569f70e9c54df4c2c7a285d2829bbf3346cfee32e150e
- SSDEEP
  
  6144:POLzcS0Rs+Hsohxd2Quohdbd0zscwIGUKfvUJ43ewmxteZekR+1b/KVC0CLzg:6cXHxdzZdxGwsYIL0
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2