eca93596eb43264b9fda8825a862d7163ff5301cd4a32fb70720a553e8a005f4 | Triage

Sharing

General

Target

8d9b5810f490e0aab9d9f06f2a9e2563_JC.exe
Size

4.3MB
Sample

231012-xd3sbsge51
MD5

8d9b5810f490e0aab9d9f06f2a9e2563
SHA1

1dc291e969f5a296f3f76e2beb3b26e829804130
SHA256

eca93596eb43264b9fda8825a862d7163ff5301cd4a32fb70720a553e8a005f4
SHA512

7e2139829ef56d7f7fe9c7316e536bb928416da083fda1b75dd189ecbb2cd287346dd84da49010f1c36f88260dec3b0620688d92264204bb6cb51be24f2eb433
SSDEEP

98304:4g6/y1GUnIabjKoh9Wmhv7St/fkZcNfkZc:4U1p5vU3PpP

Score

6^/10

persistence

Malware Config

Targets

- Target
  
  8d9b5810f490e0aab9d9f06f2a9e2563_JC.exe
- Size
  
  4.3MB
- MD5
  
  8d9b5810f490e0aab9d9f06f2a9e2563
- SHA1
  
  1dc291e969f5a296f3f76e2beb3b26e829804130
- SHA256
  
  eca93596eb43264b9fda8825a862d7163ff5301cd4a32fb70720a553e8a005f4
- SHA512
  
  7e2139829ef56d7f7fe9c7316e536bb928416da083fda1b75dd189ecbb2cd287346dd84da49010f1c36f88260dec3b0620688d92264204bb6cb51be24f2eb433
- SSDEEP
  
  98304:4g6/y1GUnIabjKoh9Wmhv7St/fkZcNfkZc:4U1p5vU3PpP
Score

6^/10

persistence
- Adds Run key to start application
  persistence
- Drops autorun.inf file
  Malware can abuse Windows Autorun to spread further via attached volumes.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Replication Through Removable Media

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Replication Through Removable Media

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2