f60bae2ba9064bd1a2f2a6dd57eeb25a362056cd4f34ce90eb7ebcdc1944ecb1 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c1ddaffad6c7cc8e4f6b68ae412b3b39.exe
Size

128KB
Sample

231127-t7ze8aaa62
MD5

c1ddaffad6c7cc8e4f6b68ae412b3b39
SHA1

80b20843c1f81bb053db385f800bb726cb684c3c
SHA256

f60bae2ba9064bd1a2f2a6dd57eeb25a362056cd4f34ce90eb7ebcdc1944ecb1
SHA512

be2f1c5c62d9653827d42543fc80e43411255668cd04714691315513805a093c23a463baadfe850c3f030ef0fcaff3b2bddcb19ce2ee744e18feb75a615fa6a0
SSDEEP

3072:ChDfWCl8ltd5ThtecSJdEN0s4WE+3S9pui6yYPaI7DX:CJWj9ydENm+3Mpui6yYPaI/

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  c1ddaffad6c7cc8e4f6b68ae412b3b39.exe
- Size
  
  128KB
- MD5
  
  c1ddaffad6c7cc8e4f6b68ae412b3b39
- SHA1
  
  80b20843c1f81bb053db385f800bb726cb684c3c
- SHA256
  
  f60bae2ba9064bd1a2f2a6dd57eeb25a362056cd4f34ce90eb7ebcdc1944ecb1
- SHA512
  
  be2f1c5c62d9653827d42543fc80e43411255668cd04714691315513805a093c23a463baadfe850c3f030ef0fcaff3b2bddcb19ce2ee744e18feb75a615fa6a0
- SSDEEP
  
  3072:ChDfWCl8ltd5ThtecSJdEN0s4WE+3S9pui6yYPaI7DX:CJWj9ydENm+3Mpui6yYPaI/
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2