4c89d78c71e5f444fdce2ac1c8f0a578930cc354aae77f78715317cbd8a04d4a | Triage

Sharing

Copy URL Twitter E-mail

General

Target

7ed9bd01a8cac7e45b48e724531ec8b1_JC.exe
Size

138KB
Sample

231011-rbeptsbe8v
MD5

7ed9bd01a8cac7e45b48e724531ec8b1
SHA1

00bc5d260b8bd0d8751ece24696cc8728a3255ef
SHA256

4c89d78c71e5f444fdce2ac1c8f0a578930cc354aae77f78715317cbd8a04d4a
SHA512

6cf3a0dec39adcf47df918b2e10795d01245296cb79e33f94bba43deb0cdb1da4f3bae4f16692a6ea05e481414103aa3c8ad7f82b43b0633334cfc38142c0716
SSDEEP

3072:i9u5RSw/qXXYNf3Vj63oXFmW2wS7IrHrY8pjq6:i85RSkN96Y1mHwMOH/Vz

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  7ed9bd01a8cac7e45b48e724531ec8b1_JC.exe
- Size
  
  138KB
- MD5
  
  7ed9bd01a8cac7e45b48e724531ec8b1
- SHA1
  
  00bc5d260b8bd0d8751ece24696cc8728a3255ef
- SHA256
  
  4c89d78c71e5f444fdce2ac1c8f0a578930cc354aae77f78715317cbd8a04d4a
- SHA512
  
  6cf3a0dec39adcf47df918b2e10795d01245296cb79e33f94bba43deb0cdb1da4f3bae4f16692a6ea05e481414103aa3c8ad7f82b43b0633334cfc38142c0716
- SSDEEP
  
  3072:i9u5RSw/qXXYNf3Vj63oXFmW2wS7IrHrY8pjq6:i85RSkN96Y1mHwMOH/Vz
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2