cfaa4e34ba1b6bf3e1428d0586bc7e2537abbff1677df8c3dade38c0e97f4a31 | Triage

Sharing

General

Target

cfaa4e34ba1b6bf3e1428d0586bc7e2537abbff1677df8c3dade38c0e97f4a31
Size

74KB
Sample

240328-al175shd72
MD5

3c80e71d874da561eb8ca5405bc4b245
SHA1

c165d931f9e464ecba3b51924c65c414f4d192a6
SHA256

cfaa4e34ba1b6bf3e1428d0586bc7e2537abbff1677df8c3dade38c0e97f4a31
SHA512

9a3cb7d283f73b67c5c11e2ab819ec7847bd0abf4bfffe5aec5e8c9fd1fc09995b95badc0048c655d076027b1dfbf3b4a60671c216be7759b29bb3571b5f6c22
SSDEEP

768:Oh2FsHv5Gb0BAm5wgoNiQyx9JSIJ/j7JW5j7vQumvPOy294Apc5UQSCXPFfTn8FY:Oh1vO0mdrNijXJ77WIUCfSCJT8FnTgH

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  cfaa4e34ba1b6bf3e1428d0586bc7e2537abbff1677df8c3dade38c0e97f4a31
- Size
  
  74KB
- MD5
  
  3c80e71d874da561eb8ca5405bc4b245
- SHA1
  
  c165d931f9e464ecba3b51924c65c414f4d192a6
- SHA256
  
  cfaa4e34ba1b6bf3e1428d0586bc7e2537abbff1677df8c3dade38c0e97f4a31
- SHA512
  
  9a3cb7d283f73b67c5c11e2ab819ec7847bd0abf4bfffe5aec5e8c9fd1fc09995b95badc0048c655d076027b1dfbf3b4a60671c216be7759b29bb3571b5f6c22
- SSDEEP
  
  768:Oh2FsHv5Gb0BAm5wgoNiQyx9JSIJ/j7JW5j7vQumvPOy294Apc5UQSCXPFfTn8FY:Oh1vO0mdrNijXJ77WIUCfSCJT8FnTgH
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2