23bad84536f1ef94c87ba2a1e200b9a5bd6090920715175ed19d1413276468db | Triage

Sharing

Copy URL Twitter E-mail

General

Target

5e3723cc6b037a0be9539ca1bd10fe62
Size

796KB
Sample

231226-jxsjtaehan
MD5

5e3723cc6b037a0be9539ca1bd10fe62
SHA1

10fb058d4392c3f038f9659d93826848811d0578
SHA256

23bad84536f1ef94c87ba2a1e200b9a5bd6090920715175ed19d1413276468db
SHA512

a955f454f7c50222c7214d6a40ab031f0e1514ae71115fe7a947fe70d05d740f228c5a53a86bed6100a24ac2c28e3eee81fe59182352690a968b5adc3c973f42
SSDEEP

12288:hapshZSrCvE6jmSmI1CxUEqaYFJDFkKg4iA94rx8MDmL0ZpgasbTERiV9E:hapshZ8CvSU4UEqbFA00rXE0MgIVa

Score

7^/10

persistence upx

Malware Config

Targets

- Target
  
  1.vbs
- Size
  
  156B
- MD5
  
  174ec5ec092e0b96e27680bae9bd718f
- SHA1
  
  8a2f39ba57350cdb7fa3ade3178fd4eea2f7f98d
- SHA256
  
  712628f25cfb52a7d78922821eb799effb3cad2a8cd7021cb0ffd8c7f6a6f6cd
- SHA512
  
  4676b0a32bf49d2ceb75f6ee971c25f2db8fc7fbca7760d8dd71ddebfd4766acbc1b593875f2e2c27556a03305ecaa9235bb0fb21ed87b2c1e910278ea3136b5
Score

1^/10
behavioral1 behavioral2
- Target
  
  3.bat
- Size
  
  1KB
- MD5
  
  598a85adc5bbc3928454260ab745e7a7
- SHA1
  
  0f7a67b353ffc10efb2557ce60032a994cd149ab
- SHA256
  
  d6b54f6dcf009752cff0d57f70c0f91a8678e611d083a8d1c9bed35e7df4924d
- SHA512
  
  c66eb5f9057eaf5152405478c1e13252b96e4d332ef408f1c155c2513009d1da72995465fe3d8aaee7a65871521a662c2d942f82fbd617fce24f69815d91e5dc
Score

1^/10
behavioral3 behavioral4
- Target
  
  3.vbs
- Size
  
  1017B
- MD5
  
  5970a74253a096d6c0b1a1c09af5d75f
- SHA1
  
  afc491ccfe15ae35feba5893b9088709d6afab1a
- SHA256
  
  c8814b4840d2e6a1b792dfdcb8565d0c62371fd83b92dd710847d39e07eb0e73
- SHA512
  
  b9f3549b28eeb8f0b93155c7bbc735a70e6a2a9831b6ef40605be795bced19510bbeaebc7a66fe12550fd4d65a36144676efe6d267556ab864e18f1720c98743
Score

3^/10
behavioral5 behavioral6
- Target
  
  bho.exe
- Size
  
  651KB
- MD5
  
  11b845f629eb4c6d7c07ead0a8ae56e6
- SHA1
  
  fba8209cf02399ca16d792cda0bcc2cbc79b0b2d
- SHA256
  
  c425d417535072ca85c6be3fea426cb3f6d3e485054c9d3d0c377e838655a4d3
- SHA512
  
  484f83dd24b975f6acf8e5f8f1e3b8f0e2c7c66e0fe4de910d26d83d554767e5ea1f8c687abe91584de8857cfc1f423c1670e51ef635d2d6f984414c1cdb195f
- SSDEEP
  
  12288:jMguUPwVws4FIpMQ70cC62QOZFgQURMkX63+SH7XtEPQ8xdzq8TFlltE:jMgOwC60O3gdZX6NH7XtQQ8xdzq8TFf6
Score

3^/10
behavioral7 behavioral8
- Target
  
  t2.exe
- Size
  
  12.9MB
- MD5
  
  d3057c3d1f19e6704bb409a2f5438f51
- SHA1
  
  f7eefb745d828f11455d5a971724e549bdd5ed95
- SHA256
  
  cb3b565e3c5b9f7d1f073781e987c58fdbaa254a201bd5fff6d41f45ad8776ff
- SHA512
  
  1585d7ec9b6119a1453bea55b2f41b17ac3778c0b8ea823ce03a262247af6ac45262cebcc8400103ed25d697f3057dc6b79d207f23142d48ef005531269830b9
- SSDEEP
  
  6144:veKTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTq:v6
Score

7^/10

persistence upx
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Adds Run key to start application
  persistence
behavioral10 behavioral9
- Target
  
  test.exe
- Size
  
  12.9MB
- MD5
  
  e46c418d5255120e38f6247e1e7ac53f
- SHA1
  
  4cb4ff59b4c70cf7a2f9db4e0f2a8cb1a7a7c6bf
- SHA256
  
  b0c5d558a765f6310b1235d7230358edddbb98ca3b3f4e09be0a644aa4ecb8e9
- SHA512
  
  eab3f14ac94e0b1beb074c41a3007c8e55c1dfe0818b469e9e739133e79b7e99573753feec5077dfade699b82009144817d500903c356dcc1eb44b03084cf14f
- SSDEEP
  
  6144:jKxQooikzqDSee+TTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTTc:2xQNiHSz1
Score

7^/10

upx
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral11 behavioral12

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12