d813e055d30dd9dfe26cde473589503f213257fff5825002f5299c71854fb826 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

01ca52f5b42027a4be4d5af2d230fa1b_JC.exe
Size

288KB
Sample

231011-2vy8pacc55
MD5

01ca52f5b42027a4be4d5af2d230fa1b
SHA1

e246177594c2edc15b6b000f7ee154fbe58610ec
SHA256

d813e055d30dd9dfe26cde473589503f213257fff5825002f5299c71854fb826
SHA512

f6250100ce3aacf6cb515c306cee924a2b32328d29b67e22b2d518d6ea4fa97bb0d12007649b4bfa8f85d72d43e4fbc8607db0ab0b8e8337147694d1619ce824
SSDEEP

3072:IVHBgGWNSrlQufT/FSVT8S3a+LaYthj7ZTNf9Nm2C4smf9vms+CzFW4r2RKihOfB:IJOG0SrlQu7FS6N+uwLN7Rjr

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  01ca52f5b42027a4be4d5af2d230fa1b_JC.exe
- Size
  
  288KB
- MD5
  
  01ca52f5b42027a4be4d5af2d230fa1b
- SHA1
  
  e246177594c2edc15b6b000f7ee154fbe58610ec
- SHA256
  
  d813e055d30dd9dfe26cde473589503f213257fff5825002f5299c71854fb826
- SHA512
  
  f6250100ce3aacf6cb515c306cee924a2b32328d29b67e22b2d518d6ea4fa97bb0d12007649b4bfa8f85d72d43e4fbc8607db0ab0b8e8337147694d1619ce824
- SSDEEP
  
  3072:IVHBgGWNSrlQufT/FSVT8S3a+LaYthj7ZTNf9Nm2C4smf9vms+CzFW4r2RKihOfB:IJOG0SrlQu7FS6N+uwLN7Rjr
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2