cdda4da404352e01a464704c195aa6ef42a876b6e38cc66f63d3d94285c0cc48 | Triage

Sharing

General

Target

cdda4da404352e01a464704c195aa6ef42a876b6e38cc66f63d3d94285c0cc48
Size

77KB
Sample

221205-f6gbcseb6v
MD5

45cf86002f7bb2454f28d3bf36ca3533
SHA1

0cc550b72a376f8da98014edbe4a2ab054eb410d
SHA256

cdda4da404352e01a464704c195aa6ef42a876b6e38cc66f63d3d94285c0cc48
SHA512

6b3674896d3e7b30c49e532a98a7ad06513b5058d7673ec3475001668aebd4778237fdc3031cc7b7770b641c06276a00c5d3ae88c9800894ae463ad38297ebd2
SSDEEP

1536:+zdFUBIPV8Jq126Pc1N56d65UCJGjhb3rI2FKrasqXR0LSt3GkE:+RBuJLN56A5/cjFQaBXR+0WH

Score

8^/10

evasion persistence

Malware Config

Targets

- Target
  
  cdda4da404352e01a464704c195aa6ef42a876b6e38cc66f63d3d94285c0cc48
- Size
  
  77KB
- MD5
  
  45cf86002f7bb2454f28d3bf36ca3533
- SHA1
  
  0cc550b72a376f8da98014edbe4a2ab054eb410d
- SHA256
  
  cdda4da404352e01a464704c195aa6ef42a876b6e38cc66f63d3d94285c0cc48
- SHA512
  
  6b3674896d3e7b30c49e532a98a7ad06513b5058d7673ec3475001668aebd4778237fdc3031cc7b7770b641c06276a00c5d3ae88c9800894ae463ad38297ebd2
- SSDEEP
  
  1536:+zdFUBIPV8Jq126Pc1N56d65UCJGjhb3rI2FKrasqXR0LSt3GkE:+RBuJLN56A5/cjFQaBXR+0WH
Score

8^/10

evasion persistence
- Stops running service(s)
  evasion
- Loads dropped DLL
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Modify Existing Service

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Impair Defenses

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Service Stop

Tasks

static1

behavioral1

evasionpersistence

behavioral2

evasionpersistence