2516bebffe564b11edddd27e877ee8772cf91a2e1b9ca588fa142fe71270bc61 | Triage

Sharing

General

Target

df768c276df2ae7529d482dc96dd5d0d_JC.exe
Size

99KB
Sample

231011-xrrbfshc52
MD5

df768c276df2ae7529d482dc96dd5d0d
SHA1

47a6c36a0c372c0744b354fa3e78fc1cb4be8342
SHA256

2516bebffe564b11edddd27e877ee8772cf91a2e1b9ca588fa142fe71270bc61
SHA512

de59982f8df7d6b4e133e2853f7ff70e50f5c9823600b3cd416ef31e782a3abca0e935ac78867fee9f53ebb4c1b3342fcbc8a8baf939d540d1c18b492417d55f
SSDEEP

3072:iw9Wa8WHYytCVzzeyYpwoTRBmDRGGurhUI:iw8WHYytuzaam7UI

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  df768c276df2ae7529d482dc96dd5d0d_JC.exe
- Size
  
  99KB
- MD5
  
  df768c276df2ae7529d482dc96dd5d0d
- SHA1
  
  47a6c36a0c372c0744b354fa3e78fc1cb4be8342
- SHA256
  
  2516bebffe564b11edddd27e877ee8772cf91a2e1b9ca588fa142fe71270bc61
- SHA512
  
  de59982f8df7d6b4e133e2853f7ff70e50f5c9823600b3cd416ef31e782a3abca0e935ac78867fee9f53ebb4c1b3342fcbc8a8baf939d540d1c18b492417d55f
- SSDEEP
  
  3072:iw9Wa8WHYytCVzzeyYpwoTRBmDRGGurhUI:iw8WHYytuzaam7UI
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2