c77e4ca0711859c750a706d84615db0db171cf743e74478fc1951a4427522a5e | Triage

Sharing

General

Target

c77e4ca0711859c750a706d84615db0db171cf743e74478fc1951a4427522a5e
Size

324KB
Sample

221204-k1cs7shg7y
MD5

fb483a28d226865596be7eee3835f0d8
SHA1

1a17f6fde84203a2fd0a042c7aab4ecf32414781
SHA256

c77e4ca0711859c750a706d84615db0db171cf743e74478fc1951a4427522a5e
SHA512

58b723ad00489afe7c889ae850f8ac190babbfd114674351e561de658a06cbee5082d23d6635b2806781e8692065811f15823e6695e006966931bc9f6afc693f
SSDEEP

6144:qAoZqAYTSE0CzjeNH0LCZhwcU8oa7bN4iAdyk2xoexG:qZ0eZhJ9H7bSbMkWoexG

Score

6^/10

persistence

Malware Config

Targets

- Target
  
  c77e4ca0711859c750a706d84615db0db171cf743e74478fc1951a4427522a5e
- Size
  
  324KB
- MD5
  
  fb483a28d226865596be7eee3835f0d8
- SHA1
  
  1a17f6fde84203a2fd0a042c7aab4ecf32414781
- SHA256
  
  c77e4ca0711859c750a706d84615db0db171cf743e74478fc1951a4427522a5e
- SHA512
  
  58b723ad00489afe7c889ae850f8ac190babbfd114674351e561de658a06cbee5082d23d6635b2806781e8692065811f15823e6695e006966931bc9f6afc693f
- SSDEEP
  
  6144:qAoZqAYTSE0CzjeNH0LCZhwcU8oa7bN4iAdyk2xoexG:qZ0eZhJ9H7bSbMkWoexG
Score

6^/10

persistence
- Adds Run key to start application
  persistence
- Drops desktop.ini file(s)
- Drops autorun.inf file
  Malware can abuse Windows Autorun to spread further via attached volumes.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Replication Through Removable Media

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Install Root Certificate

Modify Registry

Credential Access

Discovery

System Information Discovery

Lateral Movement

Replication Through Removable Media

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2