56ddd0b24e9e3106206d7d3911544f9e8fec2508dc74699da69d1bc1f55144a6 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

fb4875f4a81a338d73dd493f2117d95f_JC.exe
Size

354KB
Sample

231011-g5m8yseg6x
MD5

fb4875f4a81a338d73dd493f2117d95f
SHA1

94a633cad0ef7050932b55037fac4bdf10d9761b
SHA256

56ddd0b24e9e3106206d7d3911544f9e8fec2508dc74699da69d1bc1f55144a6
SHA512

8121c85c244f4168bcf6a5625e7d9fab1b05d6fc0c7261a6733e8b6c0add11e5cca925c6c2b0593e7cf4b0540b5d808d6cfb17a42cc15b59662c146e5d227862
SSDEEP

6144:ulqFXDWMk1/0s4leMgm9khUmKyIxLp3tTs8A9Y5CUmKyIxL6iUw:fBWz0R4Mgm9kh3kK9N36Uw

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  fb4875f4a81a338d73dd493f2117d95f_JC.exe
- Size
  
  354KB
- MD5
  
  fb4875f4a81a338d73dd493f2117d95f
- SHA1
  
  94a633cad0ef7050932b55037fac4bdf10d9761b
- SHA256
  
  56ddd0b24e9e3106206d7d3911544f9e8fec2508dc74699da69d1bc1f55144a6
- SHA512
  
  8121c85c244f4168bcf6a5625e7d9fab1b05d6fc0c7261a6733e8b6c0add11e5cca925c6c2b0593e7cf4b0540b5d808d6cfb17a42cc15b59662c146e5d227862
- SSDEEP
  
  6144:ulqFXDWMk1/0s4leMgm9khUmKyIxLp3tTs8A9Y5CUmKyIxL6iUw:fBWz0R4Mgm9kh3kK9N36Uw
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2