dcd6aac3c64e836a7d13e2b07ebb8cc95b241c49bda904c5ea9e4a7f6463307c | Triage

Sharing

Copy URL Twitter E-mail

General

Target

dcd6aac3c64e836a7d13e2b07ebb8cc95b241c49bda904c5ea9e4a7f6463307c
Size

144KB
Sample

240409-3rekjsae66
MD5

c6fbd9f1e86995847d13101ef7baa319
SHA1

e9e07d3cd16a595c2f934765b630a601484abb10
SHA256

dcd6aac3c64e836a7d13e2b07ebb8cc95b241c49bda904c5ea9e4a7f6463307c
SHA512

34caa1b70ba2ff2c182f4aed4ef106dcedbf5e5228dc4213faacf27c65da04c5da3513ea3dad90acee7cfcb4b8bc511d6ff0b314104f88afc78a9b68354666fb
SSDEEP

3072:naBeL83OH2MQH2qC7ZQOlzSLUK6MwGsGnDc9nhVizLrId0:naB6H2MQWfdQOhwJ6MwGsmLrId0

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  dcd6aac3c64e836a7d13e2b07ebb8cc95b241c49bda904c5ea9e4a7f6463307c
- Size
  
  144KB
- MD5
  
  c6fbd9f1e86995847d13101ef7baa319
- SHA1
  
  e9e07d3cd16a595c2f934765b630a601484abb10
- SHA256
  
  dcd6aac3c64e836a7d13e2b07ebb8cc95b241c49bda904c5ea9e4a7f6463307c
- SHA512
  
  34caa1b70ba2ff2c182f4aed4ef106dcedbf5e5228dc4213faacf27c65da04c5da3513ea3dad90acee7cfcb4b8bc511d6ff0b314104f88afc78a9b68354666fb
- SSDEEP
  
  3072:naBeL83OH2MQH2qC7ZQOlzSLUK6MwGsGnDc9nhVizLrId0:naB6H2MQWfdQOhwJ6MwGsmLrId0
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2