6cfdf25f95ba032fd3e9be47f566a1d6f56e81dddd6d5eff63ecfcdc8afc5577 | Triage

Sharing

General

Target

6cfdf25f95ba032fd3e9be47f566a1d6f56e81dddd6d5eff63ecfcdc8afc5577
Size

20KB
Sample

221127-x5d82scf62
MD5

08191da48db674c59d30e58a5414687a
SHA1

f813f186f5c990b7e38c0d6362e3915bd64b4dd1
SHA256

6cfdf25f95ba032fd3e9be47f566a1d6f56e81dddd6d5eff63ecfcdc8afc5577
SHA512

fb4d53152dedc0f60b48167041103be4e660b3b22bb9da2f8d39f566034b947a79557da84d431656ace55a0ddb3d51a186d0fa7fd3197884e079be0938e74278
SSDEEP

384:voFfvlmGlHmzTGf88B8XpZeJ4GMqpNWYO42A6llQ:AFlRQzTGfL2fK

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  6cfdf25f95ba032fd3e9be47f566a1d6f56e81dddd6d5eff63ecfcdc8afc5577
- Size
  
  20KB
- MD5
  
  08191da48db674c59d30e58a5414687a
- SHA1
  
  f813f186f5c990b7e38c0d6362e3915bd64b4dd1
- SHA256
  
  6cfdf25f95ba032fd3e9be47f566a1d6f56e81dddd6d5eff63ecfcdc8afc5577
- SHA512
  
  fb4d53152dedc0f60b48167041103be4e660b3b22bb9da2f8d39f566034b947a79557da84d431656ace55a0ddb3d51a186d0fa7fd3197884e079be0938e74278
- SSDEEP
  
  384:voFfvlmGlHmzTGf88B8XpZeJ4GMqpNWYO42A6llQ:AFlRQzTGfL2fK
Score

8^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2