b6aa390fd934bba7d40f2cbc1479a37bfeda1dfb2af442eca6f256e46a544991 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

e5e0e68f94095f765f5b94288198ade0_JC.exe
Size

72KB
Sample

231011-xnl8bsha94
MD5

e5e0e68f94095f765f5b94288198ade0
SHA1

2cf2fad470f775b86f96a65749230c710b4ee698
SHA256

b6aa390fd934bba7d40f2cbc1479a37bfeda1dfb2af442eca6f256e46a544991
SHA512

8b19514ff4e68fc49d5bfa7193c21dafeb818aa84b76316cf02db77d483ed55ffcfd701bc02623b4dbff2567b1d7de7d3874c0c6addecf640923852051a577be
SSDEEP

1536:b27Qeb6guw/avj/ic5pRFcSPtRXckTVZJsDohGz:b28eb6gurTv5pRZ1RXPTVZSDaGz

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  e5e0e68f94095f765f5b94288198ade0_JC.exe
- Size
  
  72KB
- MD5
  
  e5e0e68f94095f765f5b94288198ade0
- SHA1
  
  2cf2fad470f775b86f96a65749230c710b4ee698
- SHA256
  
  b6aa390fd934bba7d40f2cbc1479a37bfeda1dfb2af442eca6f256e46a544991
- SHA512
  
  8b19514ff4e68fc49d5bfa7193c21dafeb818aa84b76316cf02db77d483ed55ffcfd701bc02623b4dbff2567b1d7de7d3874c0c6addecf640923852051a577be
- SSDEEP
  
  1536:b27Qeb6guw/avj/ic5pRFcSPtRXckTVZJsDohGz:b28eb6gurTv5pRZ1RXPTVZSDaGz
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2