c0c92908a5bc0a1ae4155195d2cb285c2ac0f845575818eb0e1d98ba767eba57 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c0c92908a5bc0a1ae4155195d2cb285c2ac0f845575818eb0e1d98ba767eba57
Size

824KB
Sample

221106-x42yqaghd8
MD5

0d2116d9d98fc905081164b3238e0bd0
SHA1

58c13c13ec6ecd10986321b288bd0ce8a4cd345f
SHA256

c0c92908a5bc0a1ae4155195d2cb285c2ac0f845575818eb0e1d98ba767eba57
SHA512

a89d0da215d3ab0c090d6ef9a9b690600454a30eac8317492c9f7082786685936f792c1e1a5ca523fdefe1e9900639627317c235ddbaeb4e15159e8751f52eef
SSDEEP

12288:3wCBtLC+EptUpQ9SeSChq3YvxFBSSRMT8PTp4ihozEu888888888888W8888888J:jNzCtUpQ9WWPBSSRMTEpXNc

Score

7^/10

Malware Config

Targets

- Target
  
  c0c92908a5bc0a1ae4155195d2cb285c2ac0f845575818eb0e1d98ba767eba57
- Size
  
  824KB
- MD5
  
  0d2116d9d98fc905081164b3238e0bd0
- SHA1
  
  58c13c13ec6ecd10986321b288bd0ce8a4cd345f
- SHA256
  
  c0c92908a5bc0a1ae4155195d2cb285c2ac0f845575818eb0e1d98ba767eba57
- SHA512
  
  a89d0da215d3ab0c090d6ef9a9b690600454a30eac8317492c9f7082786685936f792c1e1a5ca523fdefe1e9900639627317c235ddbaeb4e15159e8751f52eef
- SSDEEP
  
  12288:3wCBtLC+EptUpQ9SeSChq3YvxFBSSRMT8PTp4ihozEu888888888888W8888888J:jNzCtUpQ9WWPBSSRMTEpXNc
Score

7^/10
- Drops startup file
- Loads dropped DLL
- Drops autorun.inf file
  Malware can abuse Windows Autorun to spread further via attached volumes.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Replication Through Removable Media

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Replication Through Removable Media

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2