fcd0ac307bb9d9cca8e61ab1608008ebd4c1e2286a97aac6f146e2e4b05dc9c3 | Triage

Sharing

General

Target

fcd0ac307bb9d9cca8e61ab1608008ebd4c1e2286a97aac6f146e2e4b05dc9c3
Size

314KB
Sample

221125-hgn11sgg99
MD5

2c3f432ed0ac134ba8a6029126126e16
SHA1

68268dc8cabe6dfa1ac2722e3505bc61011a2b97
SHA256

fcd0ac307bb9d9cca8e61ab1608008ebd4c1e2286a97aac6f146e2e4b05dc9c3
SHA512

d2802969b7dfbcfebcbddb1fcacd0c6f8464328284765af685d30aca30836c68fe6dd81d4721f2ad521eec3efad321a808b58fd367dccc2117bb109fb96c19e1
SSDEEP

6144:MsU36U4IWQWDlHw/z0qm1iZcWmK+TElAOn01JbtOPEpbh4gdIjK:pw6U4IvWDaLhMuWTDOn01FtiSh4QI

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  fcd0ac307bb9d9cca8e61ab1608008ebd4c1e2286a97aac6f146e2e4b05dc9c3
- Size
  
  314KB
- MD5
  
  2c3f432ed0ac134ba8a6029126126e16
- SHA1
  
  68268dc8cabe6dfa1ac2722e3505bc61011a2b97
- SHA256
  
  fcd0ac307bb9d9cca8e61ab1608008ebd4c1e2286a97aac6f146e2e4b05dc9c3
- SHA512
  
  d2802969b7dfbcfebcbddb1fcacd0c6f8464328284765af685d30aca30836c68fe6dd81d4721f2ad521eec3efad321a808b58fd367dccc2117bb109fb96c19e1
- SSDEEP
  
  6144:MsU36U4IWQWDlHw/z0qm1iZcWmK+TElAOn01JbtOPEpbh4gdIjK:pw6U4IvWDaLhMuWTDOn01FtiSh4QI
Score

8^/10

persistence
- Executes dropped EXE
- Deletes itself
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2