4f4f41ddcf255094beceab2ff4a61c3f7092cada4f65865b42971b947b02568a | Triage

Sharing

Copy URL Twitter E-mail

General

Target

Setup Comeback Kid v1.1.1.exe
Size

12.1MB
Sample

230216-h4clhagd68
MD5

3aef05a3780f1a7a66ff9038bf0b1232
SHA1

596abccf67a6f209763ad4f6803b1ab88f815279
SHA256

4f4f41ddcf255094beceab2ff4a61c3f7092cada4f65865b42971b947b02568a
SHA512

52ea0d0d9b4d4837febae43e61b35322ce09f78db605e2b5419132734fae7d24d4ae5ae9f668b3a10ccb3c49e66a41c3dc10e09783a0ef534b3376af68b56914
SSDEEP

196608:/rU1tmsZynmeIxKoIWA8bavwmRiVYHJoBiujPSUZn+/XZr:zU1trK6Kc3CnhJoB+bRr

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  Setup Comeback Kid v1.1.1.exe
- Size
  
  12.1MB
- MD5
  
  3aef05a3780f1a7a66ff9038bf0b1232
- SHA1
  
  596abccf67a6f209763ad4f6803b1ab88f815279
- SHA256
  
  4f4f41ddcf255094beceab2ff4a61c3f7092cada4f65865b42971b947b02568a
- SHA512
  
  52ea0d0d9b4d4837febae43e61b35322ce09f78db605e2b5419132734fae7d24d4ae5ae9f668b3a10ccb3c49e66a41c3dc10e09783a0ef534b3376af68b56914
- SSDEEP
  
  196608:/rU1tmsZynmeIxKoIWA8bavwmRiVYHJoBiujPSUZn+/XZr:zU1trK6Kc3CnhJoB+bRr
Score

7^/10

discovery
- Executes dropped EXE
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2