5896e518c9a18468397c2c67f0757f2747460c40a9b94b745128273f401997a0 | Triage

Sharing

General

Target

d8c6c6a673246061a93651b4cc68e022_JC.exe
Size

1.9MB
Sample

231011-xr4lsaff9x
MD5

d8c6c6a673246061a93651b4cc68e022
SHA1

2af1faf0096df79b86f3d945bf6c84ea76ca8478
SHA256

5896e518c9a18468397c2c67f0757f2747460c40a9b94b745128273f401997a0
SHA512

431d49a310304afa8e3ba832b9a5b0f95b68617976b1e9093d219bf90a9d60548ba68281da57bb78252384b149f71c03ff589fc99ac3298af8264ccb1a31a8ac
SSDEEP

24576:OgNIVyeNIVy2j5aaRLVtnX6ojNIVyeNIVy2jHCNIVyeNIVy2j5aaRLVtnX6ojNIw:qyjAi6yj7dyjAi6yjx

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  d8c6c6a673246061a93651b4cc68e022_JC.exe
- Size
  
  1.9MB
- MD5
  
  d8c6c6a673246061a93651b4cc68e022
- SHA1
  
  2af1faf0096df79b86f3d945bf6c84ea76ca8478
- SHA256
  
  5896e518c9a18468397c2c67f0757f2747460c40a9b94b745128273f401997a0
- SHA512
  
  431d49a310304afa8e3ba832b9a5b0f95b68617976b1e9093d219bf90a9d60548ba68281da57bb78252384b149f71c03ff589fc99ac3298af8264ccb1a31a8ac
- SSDEEP
  
  24576:OgNIVyeNIVy2j5aaRLVtnX6ojNIVyeNIVy2jHCNIVyeNIVy2j5aaRLVtnX6ojNIw:qyjAi6yj7dyjAi6yjx
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2