c694a36d76e65ab4dab1cf8ce722d69d77617c7f4f4213a5f33a35ffd6619711 | Triage

Sharing

General

Target

c694a36d76e65ab4dab1cf8ce722d69d77617c7f4f4213a5f33a35ffd6619711
Size

443KB
Sample

240308-agpzbaba3w
MD5

c359b27e693e56548ed5c2d4c11cff11
SHA1

58c362e2db3a95e41e1ec3984a28054761e953a6
SHA256

c694a36d76e65ab4dab1cf8ce722d69d77617c7f4f4213a5f33a35ffd6619711
SHA512

c3f04189a7a131b0131f56a799233f68f0832ad4a38cb011651ccf660c3d0412dd4811b17c5f4358148b6244c97d13713f58467df6e8044966a82d63ca8c8cc0
SSDEEP

6144:tV3g+Tu+7zeXmRL13n4GAI13n4GAvs0PEpNF0pNO021fv13n4GA3uKjwszeXmOEB:tBg+TH1J1HJ1Uj+HiPj

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  c694a36d76e65ab4dab1cf8ce722d69d77617c7f4f4213a5f33a35ffd6619711
- Size
  
  443KB
- MD5
  
  c359b27e693e56548ed5c2d4c11cff11
- SHA1
  
  58c362e2db3a95e41e1ec3984a28054761e953a6
- SHA256
  
  c694a36d76e65ab4dab1cf8ce722d69d77617c7f4f4213a5f33a35ffd6619711
- SHA512
  
  c3f04189a7a131b0131f56a799233f68f0832ad4a38cb011651ccf660c3d0412dd4811b17c5f4358148b6244c97d13713f58467df6e8044966a82d63ca8c8cc0
- SSDEEP
  
  6144:tV3g+Tu+7zeXmRL13n4GAI13n4GAvs0PEpNF0pNO021fv13n4GA3uKjwszeXmOEB:tBg+TH1J1HJ1Uj+HiPj
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2