55590c23f4fcf694f318555f74bfc1ed3f1e9b2533a6ae3304a777d95166ce09 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

cde9d01138ecff39c196c59d47dfb9fa
Size

31KB
Sample

240316-m9pkgabh32
MD5

cde9d01138ecff39c196c59d47dfb9fa
SHA1

05088ae8472a214cd6492050680137c64bd38a21
SHA256

55590c23f4fcf694f318555f74bfc1ed3f1e9b2533a6ae3304a777d95166ce09
SHA512

9a3012631bfeae4740639449339ed21235bea7eb31bded4b8a8096e53719c047124df56fec4104dd53a58002ee79864373dcec2c54e10b8c27a6025e295b604a
SSDEEP

768:cGl2BkSIWtPvEPHhO7EO/sUKLLmQz2qccnzT4Mywirm:cCrkV/sUKLjz2Yz+w9

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  cde9d01138ecff39c196c59d47dfb9fa
- Size
  
  31KB
- MD5
  
  cde9d01138ecff39c196c59d47dfb9fa
- SHA1
  
  05088ae8472a214cd6492050680137c64bd38a21
- SHA256
  
  55590c23f4fcf694f318555f74bfc1ed3f1e9b2533a6ae3304a777d95166ce09
- SHA512
  
  9a3012631bfeae4740639449339ed21235bea7eb31bded4b8a8096e53719c047124df56fec4104dd53a58002ee79864373dcec2c54e10b8c27a6025e295b604a
- SSDEEP
  
  768:cGl2BkSIWtPvEPHhO7EO/sUKLLmQz2qccnzT4Mywirm:cCrkV/sUKLjz2Yz+w9
Score

8^/10

persistence
- Sets DLL path for service in the registry
  persistence
- Deletes itself
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2