c2cdda82f97808ac87d07d346db14c5e28fd8ea0952f24adebe815a1e0aea369 | Triage

Sharing

General

Target

c2cdda82f97808ac87d07d346db14c5e28fd8ea0952f24adebe815a1e0aea369
Size

78KB
Sample

221206-mk1ansch4w
MD5

39c925e554f3ca29d6e198f03d25689e
SHA1

24fdf6d25432039a1a396a52ba9e77d540970acf
SHA256

c2cdda82f97808ac87d07d346db14c5e28fd8ea0952f24adebe815a1e0aea369
SHA512

9220621ef9a853775c6041031d03afb27511d9ef638b1a6fe452204b54a5265aaa9aadca41693c63b7e68fcd7daacd3031cbc122201baf137dc2bbe4c9f8675c
SSDEEP

1536:nJc+gTo6JEZKM0kQ6tl7sINsJyA3RFlh1IsvAFXgQk0mWuPzINEwH:nJchJ0KPF6nZSFl7IsvAhg10d8kJH

Score

8^/10

evasion persistence

Malware Config

Targets

- Target
  
  c2cdda82f97808ac87d07d346db14c5e28fd8ea0952f24adebe815a1e0aea369
- Size
  
  78KB
- MD5
  
  39c925e554f3ca29d6e198f03d25689e
- SHA1
  
  24fdf6d25432039a1a396a52ba9e77d540970acf
- SHA256
  
  c2cdda82f97808ac87d07d346db14c5e28fd8ea0952f24adebe815a1e0aea369
- SHA512
  
  9220621ef9a853775c6041031d03afb27511d9ef638b1a6fe452204b54a5265aaa9aadca41693c63b7e68fcd7daacd3031cbc122201baf137dc2bbe4c9f8675c
- SSDEEP
  
  1536:nJc+gTo6JEZKM0kQ6tl7sINsJyA3RFlh1IsvAFXgQk0mWuPzINEwH:nJchJ0KPF6nZSFl7IsvAhg10d8kJH
Score

8^/10

evasion persistence
- Executes dropped EXE
- Modifies Installed Components in the registry
  persistence
- Modifies Windows Firewall
  evasion
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Modify Existing Service

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

evasionpersistence

behavioral2

evasionpersistence