12efc00683b947ed1c425612d42cc467ed801edaba18dc763138abfdf17e8704 | Triage

Sharing

General

Target

c5044dfc42c3494ded6d0ec80ca81a07.exe
Size

364KB
Sample

240111-vvv3pscebq
MD5

c5044dfc42c3494ded6d0ec80ca81a07
SHA1

39fbd608daed069c807b0da6e705cb46fd1718b2
SHA256

12efc00683b947ed1c425612d42cc467ed801edaba18dc763138abfdf17e8704
SHA512

614bd3d9b8a8d171d25bb1091a53b4d13cd87f1f45333c2b4ffa52a064990c32c9fb050bc760c726159f1b357460db0bb2715aa43f97f6a50e687661cf1974e5
SSDEEP

6144:RU3HVWdRoPQGamohgDrKEaJnOkY9mohgDrK5E/mohgDrKEaJnOkY9mohgDrK:RU3VQRoPg/hgDr2OT/hgDr8I/hgDr2O+

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  c5044dfc42c3494ded6d0ec80ca81a07.exe
- Size
  
  364KB
- MD5
  
  c5044dfc42c3494ded6d0ec80ca81a07
- SHA1
  
  39fbd608daed069c807b0da6e705cb46fd1718b2
- SHA256
  
  12efc00683b947ed1c425612d42cc467ed801edaba18dc763138abfdf17e8704
- SHA512
  
  614bd3d9b8a8d171d25bb1091a53b4d13cd87f1f45333c2b4ffa52a064990c32c9fb050bc760c726159f1b357460db0bb2715aa43f97f6a50e687661cf1974e5
- SSDEEP
  
  6144:RU3HVWdRoPQGamohgDrKEaJnOkY9mohgDrK5E/mohgDrKEaJnOkY9mohgDrK:RU3VQRoPg/hgDr2OT/hgDr8I/hgDr2O+
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2