64db380c5e542d8076d49126ad14a7713c5b83be28bd313a8522b7ffb031a24b | Triage

Sharing

Copy URL Twitter E-mail

General

Target

e40596cb251c3fe2de1b360a10462157_JC.exe
Size

79KB
Sample

231011-ndlpdaba7t
MD5

e40596cb251c3fe2de1b360a10462157
SHA1

c9271500a88a0fe28cb0b60952dd7509767cdb31
SHA256

64db380c5e542d8076d49126ad14a7713c5b83be28bd313a8522b7ffb031a24b
SHA512

abca35b67960d22d49b37a5f44e36b6d46880014c9a773f3babfaa959bb4ac8f28babae7bc478b0bb30d839d0ed5ba30ac554a76263eff152d33f7d8c54e1b8c
SSDEEP

1536:S4QgEcXz1nySvGkQVUGrRwvL+H3PMuNQNGZrI1jHJZrR:DQHcXz8SvGBVUGroe3PvNQNGu1jHJ9R

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  e40596cb251c3fe2de1b360a10462157_JC.exe
- Size
  
  79KB
- MD5
  
  e40596cb251c3fe2de1b360a10462157
- SHA1
  
  c9271500a88a0fe28cb0b60952dd7509767cdb31
- SHA256
  
  64db380c5e542d8076d49126ad14a7713c5b83be28bd313a8522b7ffb031a24b
- SHA512
  
  abca35b67960d22d49b37a5f44e36b6d46880014c9a773f3babfaa959bb4ac8f28babae7bc478b0bb30d839d0ed5ba30ac554a76263eff152d33f7d8c54e1b8c
- SSDEEP
  
  1536:S4QgEcXz1nySvGkQVUGrRwvL+H3PMuNQNGZrI1jHJZrR:DQHcXz8SvGBVUGroe3PvNQNGu1jHJ9R
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2