c1853b7f39c854c19408c29f02fb13b883edcde8d61bd261cb8be0d2c8621dbe | Triage

Sharing

General

Target

c1853b7f39c854c19408c29f02fb13b883edcde8d61bd.exe
Size

5.4MB
Sample

230412-qjdl3ace78
MD5

0cb1e47546d778ad888baee0f6c9b5ec
SHA1

164220f9706f898d33dd76435c0603ea8972d2b3
SHA256

c1853b7f39c854c19408c29f02fb13b883edcde8d61bd261cb8be0d2c8621dbe
SHA512

f372c052b8b61ecf7036ef6ec1d067d104ed5cf451c6d08ee2cad39ca57c6b21ce6c109cb3103c0a5631ddc55ea367db1687c0e5ad1e816f5e8b4fa725da99ff
SSDEEP

49152:BhWEaxrr2WrVovR5PUSrmVqK27r918DbJrzD2y5dzAE5ElDH73LCV0UOQJUh9qRq:daKvzHAzZhEZ32VLV+h9u6

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  c1853b7f39c854c19408c29f02fb13b883edcde8d61bd.exe
- Size
  
  5.4MB
- MD5
  
  0cb1e47546d778ad888baee0f6c9b5ec
- SHA1
  
  164220f9706f898d33dd76435c0603ea8972d2b3
- SHA256
  
  c1853b7f39c854c19408c29f02fb13b883edcde8d61bd261cb8be0d2c8621dbe
- SHA512
  
  f372c052b8b61ecf7036ef6ec1d067d104ed5cf451c6d08ee2cad39ca57c6b21ce6c109cb3103c0a5631ddc55ea367db1687c0e5ad1e816f5e8b4fa725da99ff
- SSDEEP
  
  49152:BhWEaxrr2WrVovR5PUSrmVqK27r918DbJrzD2y5dzAE5ElDH73LCV0UOQJUh9qRq:daKvzHAzZhEZ32VLV+h9u6
Score

7^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Scheduled Task

Persistence

Registry Run Keys / Startup Folder

Scheduled Task

Privilege Escalation

Scheduled Task

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2