897f8c321522c049523255ca9af990ebf1f151ab35e2cd11774bda5571bcde98 | Triage

Sharing

General

Target

dabffc32d6f619a7e767a3186df4b91e_JC.exe
Size

272KB
Sample

231011-q5q5aacg74
MD5

dabffc32d6f619a7e767a3186df4b91e
SHA1

6029fc9323d258c50532cb4ba277e156cfe03022
SHA256

897f8c321522c049523255ca9af990ebf1f151ab35e2cd11774bda5571bcde98
SHA512

dd865d384e38daca6761ec69a0f93a014a04f0e7a1af0c68a2f8707f756488264c55ba1bf8d5f9dc0ce0cf921578a3bf5082ba0d31dcc068d9b75bf30d2b1912
SSDEEP

6144:JokFIIUgOTYaT15f7o+STYaT15fZYuQmt5yRQPQ:JoeIIqTYapJoTYapTFQmt5yREQ

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  dabffc32d6f619a7e767a3186df4b91e_JC.exe
- Size
  
  272KB
- MD5
  
  dabffc32d6f619a7e767a3186df4b91e
- SHA1
  
  6029fc9323d258c50532cb4ba277e156cfe03022
- SHA256
  
  897f8c321522c049523255ca9af990ebf1f151ab35e2cd11774bda5571bcde98
- SHA512
  
  dd865d384e38daca6761ec69a0f93a014a04f0e7a1af0c68a2f8707f756488264c55ba1bf8d5f9dc0ce0cf921578a3bf5082ba0d31dcc068d9b75bf30d2b1912
- SSDEEP
  
  6144:JokFIIUgOTYaT15f7o+STYaT15fZYuQmt5yRQPQ:JoeIIqTYapJoTYapTFQmt5yREQ
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2