ab6d8faa85404e71ee5581f9cf25eec1e99d6f68542d24bf49b3678e71f9d080 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

197eab1419a99140a0100c23e633c8a9_JC.exe
Size

315KB
Sample

231011-g4sgaagg94
MD5

197eab1419a99140a0100c23e633c8a9
SHA1

c95cd82725fb6efb0c72f7f84004fd9d9119daeb
SHA256

ab6d8faa85404e71ee5581f9cf25eec1e99d6f68542d24bf49b3678e71f9d080
SHA512

d69a640a43a1224d2bf951de7396a6f0a76ea8f08de065745e601e9e117b618def6d9123a63a3ce4c8799bd54fcf141b5169abdac0251542d023f80d9b8ccd2c
SSDEEP

6144:/9OfIvx7qP+o9vPHOVd2/UAtqI+stesMmG:/AU7cHXRntesMR

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  197eab1419a99140a0100c23e633c8a9_JC.exe
- Size
  
  315KB
- MD5
  
  197eab1419a99140a0100c23e633c8a9
- SHA1
  
  c95cd82725fb6efb0c72f7f84004fd9d9119daeb
- SHA256
  
  ab6d8faa85404e71ee5581f9cf25eec1e99d6f68542d24bf49b3678e71f9d080
- SHA512
  
  d69a640a43a1224d2bf951de7396a6f0a76ea8f08de065745e601e9e117b618def6d9123a63a3ce4c8799bd54fcf141b5169abdac0251542d023f80d9b8ccd2c
- SSDEEP
  
  6144:/9OfIvx7qP+o9vPHOVd2/UAtqI+stesMmG:/AU7cHXRntesMR
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2