de011107d9eb2144baf45708c64e7fba74da92f3d4ab9ef57fc5534f95b46281 | Triage

Sharing

General

Target

030157fc8e4c008bda3db4f43b841de0_exe32_JC.exe
Size

459KB
Sample

231015-tchtzsah63
MD5

030157fc8e4c008bda3db4f43b841de0
SHA1

f070e8d00e41f18ba95b8491fd5a716b3aa5de4b
SHA256

de011107d9eb2144baf45708c64e7fba74da92f3d4ab9ef57fc5534f95b46281
SHA512

e5f3383e70c22a015b4dd4f429f77f3591d9407e5466946e9e3be8e6378f9e33fabd24352a4036aa54d75e471043c8dc052bba25611af6f82496258b3bcee36e
SSDEEP

12288:pWR7cwIaJwIKfDy/phgeczlqczZd7LFB3oFHoGnFjVZnykJGvpHGdt:KgwLJwFfDy/phgeczlqczZd7LFB3oFHF

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  030157fc8e4c008bda3db4f43b841de0_exe32_JC.exe
- Size
  
  459KB
- MD5
  
  030157fc8e4c008bda3db4f43b841de0
- SHA1
  
  f070e8d00e41f18ba95b8491fd5a716b3aa5de4b
- SHA256
  
  de011107d9eb2144baf45708c64e7fba74da92f3d4ab9ef57fc5534f95b46281
- SHA512
  
  e5f3383e70c22a015b4dd4f429f77f3591d9407e5466946e9e3be8e6378f9e33fabd24352a4036aa54d75e471043c8dc052bba25611af6f82496258b3bcee36e
- SSDEEP
  
  12288:pWR7cwIaJwIKfDy/phgeczlqczZd7LFB3oFHoGnFjVZnykJGvpHGdt:KgwLJwFfDy/phgeczlqczZd7LFB3oFHF
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2