699e41a713f3a5cbb309a32340fead2700ac90404bf1ddf508ba7e43f104e993 | Triage

Sharing

General

Target

2ea177b5995c73e2184393e146146944_JC.exe
Size

298KB
Sample

231012-1na2vaca8v
MD5

2ea177b5995c73e2184393e146146944
SHA1

18cf4a48915fc30bb5b08f8c6c8411f9914d12b8
SHA256

699e41a713f3a5cbb309a32340fead2700ac90404bf1ddf508ba7e43f104e993
SHA512

267675d17c7d1266b4a578d1841eaf6ad03314a72b354a543ce9812a505f45baef000202a0167af26b39130a818d1283df2b11dd48e1f65b3469c3b484f73174
SSDEEP

6144:YWRyh9kMaKpv3aJ4Xunxm8xA5r/fWENpzKe3rdBLAl7c84wo/5yB/NwnmYyLjEat:YSyTKJ4en8cARPscLAl7c81S5yB/NImR

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  2ea177b5995c73e2184393e146146944_JC.exe
- Size
  
  298KB
- MD5
  
  2ea177b5995c73e2184393e146146944
- SHA1
  
  18cf4a48915fc30bb5b08f8c6c8411f9914d12b8
- SHA256
  
  699e41a713f3a5cbb309a32340fead2700ac90404bf1ddf508ba7e43f104e993
- SHA512
  
  267675d17c7d1266b4a578d1841eaf6ad03314a72b354a543ce9812a505f45baef000202a0167af26b39130a818d1283df2b11dd48e1f65b3469c3b484f73174
- SSDEEP
  
  6144:YWRyh9kMaKpv3aJ4Xunxm8xA5r/fWENpzKe3rdBLAl7c84wo/5yB/NwnmYyLjEat:YSyTKJ4en8cARPscLAl7c81S5yB/NImR
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2