66df5ca7a1ee283097397ece03d63861960544fec5f494fc11a29db9b08b2c58 | Triage

Sharing

General

Target

aa224dd524c1353f78f588c2e7bd081c_JC.exe
Size

176KB
Sample

231011-kg12padf34
MD5

aa224dd524c1353f78f588c2e7bd081c
SHA1

1d59bec4e221922b6da839ca1bf85f28e7b37d18
SHA256

66df5ca7a1ee283097397ece03d63861960544fec5f494fc11a29db9b08b2c58
SHA512

2a4058a7b0517984dce49f964ec37b3d903a5973f543f421ca00cf4b9f25029ede3d775f839bbe24248cbb8de42c8d1f1cff47891fbde2e2c7990acc0ab10254
SSDEEP

3072:dtf3Bgjc5qXHwHHeeez7dUjmOiBn3w8BdTj2h33ppaS46HUF2pMXSfN6RnQShl:nanBOjVu3w8BdTj2V3ppQ60MMCf0RnQ4

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  aa224dd524c1353f78f588c2e7bd081c_JC.exe
- Size
  
  176KB
- MD5
  
  aa224dd524c1353f78f588c2e7bd081c
- SHA1
  
  1d59bec4e221922b6da839ca1bf85f28e7b37d18
- SHA256
  
  66df5ca7a1ee283097397ece03d63861960544fec5f494fc11a29db9b08b2c58
- SHA512
  
  2a4058a7b0517984dce49f964ec37b3d903a5973f543f421ca00cf4b9f25029ede3d775f839bbe24248cbb8de42c8d1f1cff47891fbde2e2c7990acc0ab10254
- SSDEEP
  
  3072:dtf3Bgjc5qXHwHHeeez7dUjmOiBn3w8BdTj2h33ppaS46HUF2pMXSfN6RnQShl:nanBOjVu3w8BdTj2V3ppQ60MMCf0RnQ4
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2