c96a7f20951318b6ec88cfd38f3a64bcce6639f8cda31645b2eead74f4703bba | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c96a7f20951318b6ec88cfd38f3a64bcce6639f8cda31645b2eead74f4703bba
Size

294KB
Sample

221206-yvpgpscd61
MD5

2160ceb66c60ae733b763db9c91a3ee2
SHA1

4f9b9e35c0176a3a5de0885a0ddc22c70f86b0be
SHA256

c96a7f20951318b6ec88cfd38f3a64bcce6639f8cda31645b2eead74f4703bba
SHA512

d6f77d48982b7efe8f2c98d668f39e6be2ae3408a0b4f0f85be81b27d48841a1e0d1211e511122e660b47ccd7fd32d5f0074043b3bd07bd1ed158b6058b93893
SSDEEP

3072:9ZKBKl0yDoZhlAqClYRJSIqyrcgJfIrg9SxXc7UTJNBgj7NwikzE6x:gKl0yDAluivSQrcgJ1SxMUT7uNRY

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  c96a7f20951318b6ec88cfd38f3a64bcce6639f8cda31645b2eead74f4703bba
- Size
  
  294KB
- MD5
  
  2160ceb66c60ae733b763db9c91a3ee2
- SHA1
  
  4f9b9e35c0176a3a5de0885a0ddc22c70f86b0be
- SHA256
  
  c96a7f20951318b6ec88cfd38f3a64bcce6639f8cda31645b2eead74f4703bba
- SHA512
  
  d6f77d48982b7efe8f2c98d668f39e6be2ae3408a0b4f0f85be81b27d48841a1e0d1211e511122e660b47ccd7fd32d5f0074043b3bd07bd1ed158b6058b93893
- SSDEEP
  
  3072:9ZKBKl0yDoZhlAqClYRJSIqyrcgJfIrg9SxXc7UTJNBgj7NwikzE6x:gKl0yDAluivSQrcgJ1SxMUT7uNRY
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2