9c1872cbadaf358841b06bc03fdf40d999fe5b5a79ea347930f8a34a13b6bbb7 | Triage

Sharing

General

Target

9c1872cbadaf358841b06bc03fdf40d999fe5b5a79ea347930f8a34a13b6bbb7
Size

322KB
Sample

240327-2trgfsch84
MD5

20d4092a2b0f89d8c98d9f4f8d647ee4
SHA1

8f869fdff869f57cae9e911f71dbe2d51cec855b
SHA256

9c1872cbadaf358841b06bc03fdf40d999fe5b5a79ea347930f8a34a13b6bbb7
SHA512

877ba39334ba1c10011cc0047b8b275225c419dffabd974f60c2e76581ba8a8dd1ec4adee0772097f51424e6bdd22e88977ef3ca008a8b2b80c953d9a2fd3b40
SSDEEP

1536:4729cReOjnLWr+ZgjuJUtcNzebFNMY1yjRQITmDhdF+PhJFTq1dlCsTx4LB:TcbsjuJSNEjeISVGZ3Odl

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  9c1872cbadaf358841b06bc03fdf40d999fe5b5a79ea347930f8a34a13b6bbb7
- Size
  
  322KB
- MD5
  
  20d4092a2b0f89d8c98d9f4f8d647ee4
- SHA1
  
  8f869fdff869f57cae9e911f71dbe2d51cec855b
- SHA256
  
  9c1872cbadaf358841b06bc03fdf40d999fe5b5a79ea347930f8a34a13b6bbb7
- SHA512
  
  877ba39334ba1c10011cc0047b8b275225c419dffabd974f60c2e76581ba8a8dd1ec4adee0772097f51424e6bdd22e88977ef3ca008a8b2b80c953d9a2fd3b40
- SSDEEP
  
  1536:4729cReOjnLWr+ZgjuJUtcNzebFNMY1yjRQITmDhdF+PhJFTq1dlCsTx4LB:TcbsjuJSNEjeISVGZ3Odl
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2