cd27622dc26ebeee6f19723f72bac9bb49e0c988d8cc19479d3edb3a18359165 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ccf82d6bb895a791dfb83b0f1ef08bb7.exe
Size

387KB
Sample

240105-sfwdtafeg2
MD5

ccf82d6bb895a791dfb83b0f1ef08bb7
SHA1

aabbc6990ffcb21e175f3ca51ca36a28d68beeff
SHA256

cd27622dc26ebeee6f19723f72bac9bb49e0c988d8cc19479d3edb3a18359165
SHA512

dc0e198277378a10132f3e55efa8b4d91d6d2958aa1e15d3e29333c9740b81d1e4e3289f00d027470fc7088ad0ffd9083552f240c1a091ec21e8e565cc7a80fb
SSDEEP

3072:3jKJwuODCaZ5xOzBBUmEDxuHm9jqLsFmsdYXmpFmsd7IEsJG9hmfGsRA7xA6H:3jZuOOEgHixuqjwszeXmpzKPJG9EeIMT

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  ccf82d6bb895a791dfb83b0f1ef08bb7.exe
- Size
  
  387KB
- MD5
  
  ccf82d6bb895a791dfb83b0f1ef08bb7
- SHA1
  
  aabbc6990ffcb21e175f3ca51ca36a28d68beeff
- SHA256
  
  cd27622dc26ebeee6f19723f72bac9bb49e0c988d8cc19479d3edb3a18359165
- SHA512
  
  dc0e198277378a10132f3e55efa8b4d91d6d2958aa1e15d3e29333c9740b81d1e4e3289f00d027470fc7088ad0ffd9083552f240c1a091ec21e8e565cc7a80fb
- SSDEEP
  
  3072:3jKJwuODCaZ5xOzBBUmEDxuHm9jqLsFmsdYXmpFmsd7IEsJG9hmfGsRA7xA6H:3jZuOOEgHixuqjwszeXmpzKPJG9EeIMT
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2