cd21659a77d97bb84afa8d44cca5c94595c9cd461e3d3ff8bb6b732cd359cc24 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

cd21659a77d97bb84afa8d44cca5c94595c9cd461e3d3ff8bb6b732cd359cc24
Size

200KB
Sample

221203-fb518sab4z
MD5

c5054110ab48cd9e551969abd11d584d
SHA1

15465a0876ed864a00858af3f142c64089fbfed4
SHA256

cd21659a77d97bb84afa8d44cca5c94595c9cd461e3d3ff8bb6b732cd359cc24
SHA512

84c4c7cb86e0eafae2bc0f7ebb24f388b93e36c3a875d42e9fd3602db7d494e56c290a7c21e2559172f5f67eab4bb98c1943bfcc153c353ed61877a672c46833
SSDEEP

6144:GlLq/I+mO31DBybYdTJgr9OuZjOVce3BHdmzG3h:uLqbN33RJgnRgVH4zGR

Score

10^/10

evasion persistence

Malware Config

Targets

- Target
  
  cd21659a77d97bb84afa8d44cca5c94595c9cd461e3d3ff8bb6b732cd359cc24
- Size
  
  200KB
- MD5
  
  c5054110ab48cd9e551969abd11d584d
- SHA1
  
  15465a0876ed864a00858af3f142c64089fbfed4
- SHA256
  
  cd21659a77d97bb84afa8d44cca5c94595c9cd461e3d3ff8bb6b732cd359cc24
- SHA512
  
  84c4c7cb86e0eafae2bc0f7ebb24f388b93e36c3a875d42e9fd3602db7d494e56c290a7c21e2559172f5f67eab4bb98c1943bfcc153c353ed61877a672c46833
- SSDEEP
  
  6144:GlLq/I+mO31DBybYdTJgr9OuZjOVce3BHdmzG3h:uLqbN33RJgnRgVH4zGR
Score

10^/10

evasion persistence
- Modifies system executable filetype association
  persistence
- Disables taskbar notifications via registry modification
  evasion
- Executes dropped EXE
- Modifies Installed Components in the registry
  persistence
- Deletes itself
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Change Default File Association

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

evasionpersistence

behavioral2