c4cf29af8507b2209d075b0ef00bca706830508b9f23633314fe5a8861bbf962 | Triage

Sharing

General

Target

520bedda1c2dd64ad7a07a8067f5fd54_JC.exe
Size

367KB
Sample

231012-car67sbb43
MD5

520bedda1c2dd64ad7a07a8067f5fd54
SHA1

91f178c59a2179ef9d0f2db1cc42ad2d1e618914
SHA256

c4cf29af8507b2209d075b0ef00bca706830508b9f23633314fe5a8861bbf962
SHA512

c1aa7c8801cd74179ea489f2769459095402e43ecd06818fdadf63054f3f5a63d43a1da1110d7274bfa2612b13331c9913e7e6a340ad9f9c6b5ab9da7d1325ac
SSDEEP

6144:MqQy+9scogeNNG1n6xJmPMb9+G4A9xw1LWQRll3PsGnZX+M7fX943ARDFfGPtPoB:MqQyAsnBxwkQRll/sOZbD+3ARtGVPo1X

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  520bedda1c2dd64ad7a07a8067f5fd54_JC.exe
- Size
  
  367KB
- MD5
  
  520bedda1c2dd64ad7a07a8067f5fd54
- SHA1
  
  91f178c59a2179ef9d0f2db1cc42ad2d1e618914
- SHA256
  
  c4cf29af8507b2209d075b0ef00bca706830508b9f23633314fe5a8861bbf962
- SHA512
  
  c1aa7c8801cd74179ea489f2769459095402e43ecd06818fdadf63054f3f5a63d43a1da1110d7274bfa2612b13331c9913e7e6a340ad9f9c6b5ab9da7d1325ac
- SSDEEP
  
  6144:MqQy+9scogeNNG1n6xJmPMb9+G4A9xw1LWQRll3PsGnZX+M7fX943ARDFfGPtPoB:MqQyAsnBxwkQRll/sOZbD+3ARtGVPo1X
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2