8f19caf741c100d22a0a79cf0a5b4ea981935590a665891ce966c4e2c85ebbac | Triage

Sharing

General

Target

4cd94e0fd2dc6a3bd64a65e9da27cfd4
Size

13KB
Sample

240109-ap4sfagfem
MD5

4cd94e0fd2dc6a3bd64a65e9da27cfd4
SHA1

9a80cb88f62de342f9ccbfdfeb5955ba10b8288b
SHA256

8f19caf741c100d22a0a79cf0a5b4ea981935590a665891ce966c4e2c85ebbac
SHA512

ace824355e5df84c7b9c75db164e03d012f85d4a1a1993a3d16b638d3fa08a1a4e7c7f5b9078e4763cbff05af15898a9cf8588ee90dcaf2f2c5dfe309fc2a2a3
SSDEEP

192:aSHdXgKjjXxUMiglOL2qwQ0Az/W+IyLHyfzniiwy+kbCIHXaaYKPbjajCQ4irOTb:1dD/igEL2qwQ0g3fy+kpXkKngCQ4N2m

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  4cd94e0fd2dc6a3bd64a65e9da27cfd4
- Size
  
  13KB
- MD5
  
  4cd94e0fd2dc6a3bd64a65e9da27cfd4
- SHA1
  
  9a80cb88f62de342f9ccbfdfeb5955ba10b8288b
- SHA256
  
  8f19caf741c100d22a0a79cf0a5b4ea981935590a665891ce966c4e2c85ebbac
- SHA512
  
  ace824355e5df84c7b9c75db164e03d012f85d4a1a1993a3d16b638d3fa08a1a4e7c7f5b9078e4763cbff05af15898a9cf8588ee90dcaf2f2c5dfe309fc2a2a3
- SSDEEP
  
  192:aSHdXgKjjXxUMiglOL2qwQ0Az/W+IyLHyfzniiwy+kbCIHXaaYKPbjajCQ4irOTb:1dD/igEL2qwQ0g3fy+kpXkKngCQ4N2m
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Deletes itself
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2