8eb6b010c05f59584470c0cf4b03e7d2680f4458dfd7dee73e842bb54931a6bd | Triage

Sharing

Copy URL Twitter E-mail

General

Target

cf2f7a496bacb1631a7146fd66c9e4b2.exe
Size

192KB
Sample

240107-y5x7ladgbk
MD5

cf2f7a496bacb1631a7146fd66c9e4b2
SHA1

5b1f7155584d843a4087290fc448d1d5f2412aa3
SHA256

8eb6b010c05f59584470c0cf4b03e7d2680f4458dfd7dee73e842bb54931a6bd
SHA512

e4fd060d6d6c65a074ec26a1ed42c8193c5f1a74bae71dc57542d0532d217a335cf99391c618f283fe5cf7d0cccd2b7262c332ef2110f825764f7bb4b50a09e0
SSDEEP

3072:+RD93m3+J9IDlRxyhTbhgu+tAcrbFAJc+RsUi1aVDkOvhJjv8:Cm+sDshsrtMsQBU

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  cf2f7a496bacb1631a7146fd66c9e4b2.exe
- Size
  
  192KB
- MD5
  
  cf2f7a496bacb1631a7146fd66c9e4b2
- SHA1
  
  5b1f7155584d843a4087290fc448d1d5f2412aa3
- SHA256
  
  8eb6b010c05f59584470c0cf4b03e7d2680f4458dfd7dee73e842bb54931a6bd
- SHA512
  
  e4fd060d6d6c65a074ec26a1ed42c8193c5f1a74bae71dc57542d0532d217a335cf99391c618f283fe5cf7d0cccd2b7262c332ef2110f825764f7bb4b50a09e0
- SSDEEP
  
  3072:+RD93m3+J9IDlRxyhTbhgu+tAcrbFAJc+RsUi1aVDkOvhJjv8:Cm+sDshsrtMsQBU
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2