be4b0130f6509d2dd076434c5de15c28f7886d182db7d14b67dc1fa8d3f7d624 | Triage

Sharing

General

Target

b1efea27fed24f74d0d6524b33e5be0e_JC.exe
Size

111KB
Sample

231012-sj53eshh63
MD5

b1efea27fed24f74d0d6524b33e5be0e
SHA1

3d54e075ff2b490395f34ede271bd226a53e1691
SHA256

be4b0130f6509d2dd076434c5de15c28f7886d182db7d14b67dc1fa8d3f7d624
SHA512

629aa5764e86838d2e02b706270d4e6083b51be98c02c37c7be9d31cd187dc89a7053ff2129a4cbef06548c523d3a6ea2fd20a38386d74deff51e37543102742
SSDEEP

3072:GyOfbKng6mhT8EBOe8eAw0v0wnJcefSXQHPTTAkvB5Ddj:1pglP4e3OtnJfKXqPTX7DB

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  b1efea27fed24f74d0d6524b33e5be0e_JC.exe
- Size
  
  111KB
- MD5
  
  b1efea27fed24f74d0d6524b33e5be0e
- SHA1
  
  3d54e075ff2b490395f34ede271bd226a53e1691
- SHA256
  
  be4b0130f6509d2dd076434c5de15c28f7886d182db7d14b67dc1fa8d3f7d624
- SHA512
  
  629aa5764e86838d2e02b706270d4e6083b51be98c02c37c7be9d31cd187dc89a7053ff2129a4cbef06548c523d3a6ea2fd20a38386d74deff51e37543102742
- SSDEEP
  
  3072:GyOfbKng6mhT8EBOe8eAw0v0wnJcefSXQHPTTAkvB5Ddj:1pglP4e3OtnJfKXqPTX7DB
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2