c3b4dec486024f5bca026f65d5a5b1ba8e1839511df62c947743f3b75253248b | Triage

Sharing

General

Target

fd51cfa7b9828cec8950ce2f678c34c1.exe
Size

176KB
Sample

240108-yxb96aghel
MD5

fd51cfa7b9828cec8950ce2f678c34c1
SHA1

ca3b7a3a607b6429ae53cfa869f2f965733f7629
SHA256

c3b4dec486024f5bca026f65d5a5b1ba8e1839511df62c947743f3b75253248b
SHA512

846eff0eaee6cd224b3ee9fa8ef759e23a28047609a05e1d2f69f4e4e2409edd5c482fa6ec60f911a9c1845d1bafe75f8ccb92a6a7e97e899287df62901270a4
SSDEEP

3072:FiycCEkQ0Tj3Lzqv3garlOGA8d2E2fAYjmjRrz3E3:IyXXzI3gRXE2fAEG4

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  fd51cfa7b9828cec8950ce2f678c34c1.exe
- Size
  
  176KB
- MD5
  
  fd51cfa7b9828cec8950ce2f678c34c1
- SHA1
  
  ca3b7a3a607b6429ae53cfa869f2f965733f7629
- SHA256
  
  c3b4dec486024f5bca026f65d5a5b1ba8e1839511df62c947743f3b75253248b
- SHA512
  
  846eff0eaee6cd224b3ee9fa8ef759e23a28047609a05e1d2f69f4e4e2409edd5c482fa6ec60f911a9c1845d1bafe75f8ccb92a6a7e97e899287df62901270a4
- SSDEEP
  
  3072:FiycCEkQ0Tj3Lzqv3garlOGA8d2E2fAYjmjRrz3E3:IyXXzI3gRXE2fAEG4
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2