861d8ed70889883ad83a263de92df9930deae5146a07e1192e94cc5b1382b3ea | Triage

Sharing

General

Target

c9e1b453ffd674c6efbe6120c3f45fdd_JC.exe
Size

378KB
Sample

231012-sgspbafd2t
MD5

c9e1b453ffd674c6efbe6120c3f45fdd
SHA1

b52039cb217d0fcc92617f0d35ca68ffd25789bf
SHA256

861d8ed70889883ad83a263de92df9930deae5146a07e1192e94cc5b1382b3ea
SHA512

9af80a2366f27b0acffbec4bffd6163bedb964592b64b8ce1c13d68d4b9c7607a56a8f8e69f5f0598a5865f11bc0b87184f7e81ff25b5686afe127f334f07c9b
SSDEEP

6144:ltt+5vc35/eprtMsQBma/atn9pG4l+0K76zHTgb8ecFeK8TJ4u392vVAMR4/5V0L:lv+5vcJ+RMsEat9pG4l+0K7WHT91M52D

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  c9e1b453ffd674c6efbe6120c3f45fdd_JC.exe
- Size
  
  378KB
- MD5
  
  c9e1b453ffd674c6efbe6120c3f45fdd
- SHA1
  
  b52039cb217d0fcc92617f0d35ca68ffd25789bf
- SHA256
  
  861d8ed70889883ad83a263de92df9930deae5146a07e1192e94cc5b1382b3ea
- SHA512
  
  9af80a2366f27b0acffbec4bffd6163bedb964592b64b8ce1c13d68d4b9c7607a56a8f8e69f5f0598a5865f11bc0b87184f7e81ff25b5686afe127f334f07c9b
- SSDEEP
  
  6144:ltt+5vc35/eprtMsQBma/atn9pG4l+0K76zHTgb8ecFeK8TJ4u392vVAMR4/5V0L:lv+5vcJ+RMsEat9pG4l+0K7WHT91M52D
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2