c2bd7cf1601fee7290625206ae3cbad293a375945a25c873b2e9ba5ebcd2ebff | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0001dcf8792eaa9e5b2a42d890c97f37.exe
Size

359KB
Sample

240111-vx9zmscfcl
MD5

0001dcf8792eaa9e5b2a42d890c97f37
SHA1

3ea373658c73d7891125f676bfbff4c883b2bc96
SHA256

c2bd7cf1601fee7290625206ae3cbad293a375945a25c873b2e9ba5ebcd2ebff
SHA512

600fa00ae47528758fc4f19f5480acf492a88a6e50efb249236cf46548161bff222bbc0e11f885fc86504154f42a4ac32d463f7f904099c2ade3b966183038e6
SSDEEP

3072:jRM8azjfN0kQI8Va3CkfUVuyelbvP5lkzmQ1o0Otw44KmfpKivFM6WpqXWweFqD0:WzjfNprba4Yb31/do

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  0001dcf8792eaa9e5b2a42d890c97f37.exe
- Size
  
  359KB
- MD5
  
  0001dcf8792eaa9e5b2a42d890c97f37
- SHA1
  
  3ea373658c73d7891125f676bfbff4c883b2bc96
- SHA256
  
  c2bd7cf1601fee7290625206ae3cbad293a375945a25c873b2e9ba5ebcd2ebff
- SHA512
  
  600fa00ae47528758fc4f19f5480acf492a88a6e50efb249236cf46548161bff222bbc0e11f885fc86504154f42a4ac32d463f7f904099c2ade3b966183038e6
- SSDEEP
  
  3072:jRM8azjfN0kQI8Va3CkfUVuyelbvP5lkzmQ1o0Otw44KmfpKivFM6WpqXWweFqD0:WzjfNprba4Yb31/do
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2