fd22a3fd7ea4aa44935e49c50ea73716ee98d3689efdefbd8f13fa0c02452064 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

93f7bd358cf835f27eca5c031704bc55_JC.exe
Size

384KB
Sample

231012-xdp68saf53
MD5

93f7bd358cf835f27eca5c031704bc55
SHA1

0b00df9e5ac315498a8b6dd5a18f695520170c6d
SHA256

fd22a3fd7ea4aa44935e49c50ea73716ee98d3689efdefbd8f13fa0c02452064
SHA512

737772566a3ad9809b185273cdff7097736b3ceaa543d8836cc8687cac06e5e11f63f95fd640ea6ac5b8c8b915669ffd926374508c46ddef616a1d5b78deab7c
SSDEEP

6144:j67sATmi3+yMb4sECIGkhmn9RvLLQ4sECIGkhmD7ywWJgVvM7UgZI4sECIGkhmnQ:5ATmKepIGkhm9VKpIGkhmKzgVvMgrpIr

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  93f7bd358cf835f27eca5c031704bc55_JC.exe
- Size
  
  384KB
- MD5
  
  93f7bd358cf835f27eca5c031704bc55
- SHA1
  
  0b00df9e5ac315498a8b6dd5a18f695520170c6d
- SHA256
  
  fd22a3fd7ea4aa44935e49c50ea73716ee98d3689efdefbd8f13fa0c02452064
- SHA512
  
  737772566a3ad9809b185273cdff7097736b3ceaa543d8836cc8687cac06e5e11f63f95fd640ea6ac5b8c8b915669ffd926374508c46ddef616a1d5b78deab7c
- SSDEEP
  
  6144:j67sATmi3+yMb4sECIGkhmn9RvLLQ4sECIGkhmD7ywWJgVvM7UgZI4sECIGkhmnQ:5ATmKepIGkhm9VKpIGkhmKzgVvMgrpIr
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2