e6d22f17d51bea9660233c8caae8b7133bcd3da146941cfd5ee4de7aca895e95 | Triage

Sharing

General

Target

18ba91db872f1303e6a009ea4f82f390_exe32_JC.exe
Size

98KB
Sample

231015-wbdvrabh53
MD5

18ba91db872f1303e6a009ea4f82f390
SHA1

5cff8b77ee29e2920b25f18cea7bb1b3b85e0bd4
SHA256

e6d22f17d51bea9660233c8caae8b7133bcd3da146941cfd5ee4de7aca895e95
SHA512

5aaf1bd1f0b8de2b7481097429abad4928ab9387ba83ee8509639110cf694178b201fa8d194a25e86a3e0366b5d682a2a03b61617c4239cafc4c075670bc692c
SSDEEP

3072:PQ1HaXlDT8pScfn+XavKj6nIEHeFKPD375lHzpa1P:PwaXlDTsScmXavKjpEHeYr75lHzpaF

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  18ba91db872f1303e6a009ea4f82f390_exe32_JC.exe
- Size
  
  98KB
- MD5
  
  18ba91db872f1303e6a009ea4f82f390
- SHA1
  
  5cff8b77ee29e2920b25f18cea7bb1b3b85e0bd4
- SHA256
  
  e6d22f17d51bea9660233c8caae8b7133bcd3da146941cfd5ee4de7aca895e95
- SHA512
  
  5aaf1bd1f0b8de2b7481097429abad4928ab9387ba83ee8509639110cf694178b201fa8d194a25e86a3e0366b5d682a2a03b61617c4239cafc4c075670bc692c
- SSDEEP
  
  3072:PQ1HaXlDT8pScfn+XavKj6nIEHeFKPD375lHzpa1P:PwaXlDTsScmXavKjpEHeYr75lHzpaF
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2