cf36fda92db6e7d5e561ebf837ccb4635ca51ad0cbad256666cfe8746f0c1dc1 | Triage

Sharing

General

Target

cf36fda92db6e7d5e561ebf837ccb4635ca51ad0cbad256666cfe8746f0c1dc1
Size

428KB
Sample

221123-lybzkacf27
MD5

71b8ebd66db56f5cff7fabba344a9ba4
SHA1

1953a066a6dae8928193471499f49d4a029539e6
SHA256

cf36fda92db6e7d5e561ebf837ccb4635ca51ad0cbad256666cfe8746f0c1dc1
SHA512

824de14a69b94a2f3472bcfbeb6bf52f049f7496f14744856f027ad2b7eec9e5dff54b7f5940c8c4ddf887f65ff9850832beb0c5a0f0664e5b3a50174fd5b050
SSDEEP

6144:JIA91R1UwXTB7wfHYOQirh3LVylmx8P/FPYpgtn4gRfcLOcM60mmYt:JI+XwHYOQ6V5y0x8kgtn4sfh80mmw

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  cf36fda92db6e7d5e561ebf837ccb4635ca51ad0cbad256666cfe8746f0c1dc1
- Size
  
  428KB
- MD5
  
  71b8ebd66db56f5cff7fabba344a9ba4
- SHA1
  
  1953a066a6dae8928193471499f49d4a029539e6
- SHA256
  
  cf36fda92db6e7d5e561ebf837ccb4635ca51ad0cbad256666cfe8746f0c1dc1
- SHA512
  
  824de14a69b94a2f3472bcfbeb6bf52f049f7496f14744856f027ad2b7eec9e5dff54b7f5940c8c4ddf887f65ff9850832beb0c5a0f0664e5b3a50174fd5b050
- SSDEEP
  
  6144:JIA91R1UwXTB7wfHYOQirh3LVylmx8P/FPYpgtn4gRfcLOcM60mmYt:JI+XwHYOQ6V5y0x8kgtn4sfh80mmw
Score

8^/10

persistence
- Executes dropped EXE
- Deletes itself
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Remote System Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2