eb81cda24cbde4d6adc10fac6fa940767eadce5ac4573123a22d495826210146 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

e0c08db2ad3e359b00ff51f11f918d47_JC.exe
Size

762KB
Sample

231011-wlsrnafa62
MD5

e0c08db2ad3e359b00ff51f11f918d47
SHA1

0a0e78076009ca0ffe0a5f59c0670df83661eff8
SHA256

eb81cda24cbde4d6adc10fac6fa940767eadce5ac4573123a22d495826210146
SHA512

4e52b29b1571680d77160a17e2edbb97b08cd0afe7f5eec0fec5746b3c43708b2431811cba263632e439d976eee8e818da462b7c2fb74533024d09dec364f23d
SSDEEP

3072:MGjhaq5iL0beJQZt32wLji5DlsODxRPNDkjJHzW9hUd56JsuBSjw75W6vfH2i1wJ:Hha8iAx+1zwjJHd6vB/75W6XmVAaP

Score

6^/10

persistence

Malware Config

Targets

- Target
  
  e0c08db2ad3e359b00ff51f11f918d47_JC.exe
- Size
  
  762KB
- MD5
  
  e0c08db2ad3e359b00ff51f11f918d47
- SHA1
  
  0a0e78076009ca0ffe0a5f59c0670df83661eff8
- SHA256
  
  eb81cda24cbde4d6adc10fac6fa940767eadce5ac4573123a22d495826210146
- SHA512
  
  4e52b29b1571680d77160a17e2edbb97b08cd0afe7f5eec0fec5746b3c43708b2431811cba263632e439d976eee8e818da462b7c2fb74533024d09dec364f23d
- SSDEEP
  
  3072:MGjhaq5iL0beJQZt32wLji5DlsODxRPNDkjJHzW9hUd56JsuBSjw75W6vfH2i1wJ:Hha8iAx+1zwjJHd6vB/75W6XmVAaP
Score

6^/10

persistence
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2