eb949f23986ecad4fec3434f9a04cc62ee78d79000f0a69c5cc09b593981777c | Triage

Sharing

General

Target

badd7bc826c90a567dd3da0aecf6b548_JC.exe
Size

101KB
Sample

231012-x3gldsba3t
MD5

badd7bc826c90a567dd3da0aecf6b548
SHA1

b5b8b86f98c15b9be0d625498db64126026af846
SHA256

eb949f23986ecad4fec3434f9a04cc62ee78d79000f0a69c5cc09b593981777c
SHA512

d2447f8f6c2699b4b0b9a3d8d81554f51ae7689281bd3e439170e21bf1fc89667c42a02910975fe5780957aa74da9d0314c301747dff416a30c21354ad77dc06
SSDEEP

3072:hUUOMbkEz9Ge3w3/zrB3g3k8p4qI4/HQCC:ha8dMPBZs/HNC

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  badd7bc826c90a567dd3da0aecf6b548_JC.exe
- Size
  
  101KB
- MD5
  
  badd7bc826c90a567dd3da0aecf6b548
- SHA1
  
  b5b8b86f98c15b9be0d625498db64126026af846
- SHA256
  
  eb949f23986ecad4fec3434f9a04cc62ee78d79000f0a69c5cc09b593981777c
- SHA512
  
  d2447f8f6c2699b4b0b9a3d8d81554f51ae7689281bd3e439170e21bf1fc89667c42a02910975fe5780957aa74da9d0314c301747dff416a30c21354ad77dc06
- SSDEEP
  
  3072:hUUOMbkEz9Ge3w3/zrB3g3k8p4qI4/HQCC:ha8dMPBZs/HNC
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2