3f05b34861acf5fda9444a8a7d4f5711082ec48989e7d91504ec175586c194ab | Triage

Sharing

General

Target

cfc71464c9163759743bdeb9c94c9f5b.exe
Size

724KB
Sample

240105-sl63haefen
MD5

cfc71464c9163759743bdeb9c94c9f5b
SHA1

173b615d12a59fe4195d7de9083cb73e481eb2a1
SHA256

3f05b34861acf5fda9444a8a7d4f5711082ec48989e7d91504ec175586c194ab
SHA512

6b840faee1f1568b3e575e02c956028264c62b77238bb344bbd357d2a2a690f8c8a9b41b142ae4642b94229e8f0bc56e0c05c4877a69a5b606d7ad204fb8b984
SSDEEP

12288:CDAuovN6IveDVqvQ6IvYvc6IveDVqvQ6IvmMVkJvO6IveDVqvQ6IvYvc8:Ccuiq5h3q5hnOYq5h38

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  cfc71464c9163759743bdeb9c94c9f5b.exe
- Size
  
  724KB
- MD5
  
  cfc71464c9163759743bdeb9c94c9f5b
- SHA1
  
  173b615d12a59fe4195d7de9083cb73e481eb2a1
- SHA256
  
  3f05b34861acf5fda9444a8a7d4f5711082ec48989e7d91504ec175586c194ab
- SHA512
  
  6b840faee1f1568b3e575e02c956028264c62b77238bb344bbd357d2a2a690f8c8a9b41b142ae4642b94229e8f0bc56e0c05c4877a69a5b606d7ad204fb8b984
- SSDEEP
  
  12288:CDAuovN6IveDVqvQ6IvYvc6IveDVqvQ6IvmMVkJvO6IveDVqvQ6IvYvc8:Ccuiq5h3q5hnOYq5h38
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2