cd6ff97552cc5161d5d99b8ef78d00dc5ba51725af4a2eeb96b8f4e0840381d8 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

cd6ff97552cc5161d5d99b8ef78d00dc5ba51725af4a2eeb96b8f4e0840381d8
Size

60KB
Sample

221203-y2zw1sca45
MD5

b8e319db41cfdb18574d57c3eaacafed
SHA1

75db3ef4f74e13a1a69962a571dcffe8e3dabee5
SHA256

cd6ff97552cc5161d5d99b8ef78d00dc5ba51725af4a2eeb96b8f4e0840381d8
SHA512

ee373a9c54fe420f6a16fc28f9bc8d8922b8af7fcdba4bd62bd2e0c9d52291dc7189b50c23c85ccfcd44fe85a190339f75c0d0b0e39fb4cb7568584f811c05b4
SSDEEP

1536:I643t4vL5oDNQrrAA5u2ySvAsY+81/tD:UiveDGrrAY9vAsOD

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  cd6ff97552cc5161d5d99b8ef78d00dc5ba51725af4a2eeb96b8f4e0840381d8
- Size
  
  60KB
- MD5
  
  b8e319db41cfdb18574d57c3eaacafed
- SHA1
  
  75db3ef4f74e13a1a69962a571dcffe8e3dabee5
- SHA256
  
  cd6ff97552cc5161d5d99b8ef78d00dc5ba51725af4a2eeb96b8f4e0840381d8
- SHA512
  
  ee373a9c54fe420f6a16fc28f9bc8d8922b8af7fcdba4bd62bd2e0c9d52291dc7189b50c23c85ccfcd44fe85a190339f75c0d0b0e39fb4cb7568584f811c05b4
- SSDEEP
  
  1536:I643t4vL5oDNQrrAA5u2ySvAsY+81/tD:UiveDGrrAY9vAsOD
Score

8^/10

persistence
- Sets DLL path for service in the registry
  persistence
- Deletes itself
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Remote System Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2