a28955150267c12ceebcaa084e6f3746b66b01a950d8e6838f7efaa4f2791518 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

cd239368ec170b5a9095a6f6b967b0b0_exe32.exe
Size

155KB
Sample

231015-yg19cagh95
MD5

cd239368ec170b5a9095a6f6b967b0b0
SHA1

a8a811d0a2cf10201e1459045703f368d42c65d2
SHA256

a28955150267c12ceebcaa084e6f3746b66b01a950d8e6838f7efaa4f2791518
SHA512

4832a18ff59bc3b913790961dcac6059075a1da87241838ce7bf3a601434b0525f7be963948d06ff58552bc7f07e4c0cb9e49fa2db36e4cedc506ea361c00c0a
SSDEEP

1536:5vdvdQy/9CtuFUupbHz3LNXmwTtwG2dWuV18UnjrWEznYiGzBn2rq15bLSwiHr/O:nfm6LH/tH2dWybnjrWEznYfzB9BSwWO

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  cd239368ec170b5a9095a6f6b967b0b0_exe32.exe
- Size
  
  155KB
- MD5
  
  cd239368ec170b5a9095a6f6b967b0b0
- SHA1
  
  a8a811d0a2cf10201e1459045703f368d42c65d2
- SHA256
  
  a28955150267c12ceebcaa084e6f3746b66b01a950d8e6838f7efaa4f2791518
- SHA512
  
  4832a18ff59bc3b913790961dcac6059075a1da87241838ce7bf3a601434b0525f7be963948d06ff58552bc7f07e4c0cb9e49fa2db36e4cedc506ea361c00c0a
- SSDEEP
  
  1536:5vdvdQy/9CtuFUupbHz3LNXmwTtwG2dWuV18UnjrWEznYiGzBn2rq15bLSwiHr/O:nfm6LH/tH2dWybnjrWEznYfzB9BSwWO
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2