c7d5966b888b1b23d1c3a909707fdcbf3b7be69894b41392598354b5ce67deaa | Triage

Sharing

Copy URL Twitter E-mail

General

Target

da1ee657c6794e9564cff25faf5ea22c.exe
Size

385KB
Sample

231126-kqdyhsga81
MD5

da1ee657c6794e9564cff25faf5ea22c
SHA1

16876a4c2c8ec1938421fb73b362afe7ca5a46a1
SHA256

c7d5966b888b1b23d1c3a909707fdcbf3b7be69894b41392598354b5ce67deaa
SHA512

409b4c2f95571c55fc6f377545e167888fa851cc8b9e15b295c9637c3a639e5d4e19de99041018e907d3cdffdbc746572adf2dfdc5285c0c6190055274a3487b
SSDEEP

3072:TEeIv4Om3e5wYMbVAURfE+HXAB0kCySYo0CkkhHs4WfOoKc:geIQOm3eGxbRs+HXc0uo0CkkW1f

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  da1ee657c6794e9564cff25faf5ea22c.exe
- Size
  
  385KB
- MD5
  
  da1ee657c6794e9564cff25faf5ea22c
- SHA1
  
  16876a4c2c8ec1938421fb73b362afe7ca5a46a1
- SHA256
  
  c7d5966b888b1b23d1c3a909707fdcbf3b7be69894b41392598354b5ce67deaa
- SHA512
  
  409b4c2f95571c55fc6f377545e167888fa851cc8b9e15b295c9637c3a639e5d4e19de99041018e907d3cdffdbc746572adf2dfdc5285c0c6190055274a3487b
- SSDEEP
  
  3072:TEeIv4Om3e5wYMbVAURfE+HXAB0kCySYo0CkkhHs4WfOoKc:geIQOm3eGxbRs+HXc0uo0CkkW1f
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2