2dc4ddb5bf5d938b0a7c338cb2d502cf1ef7a4c114cc14edf3d198751036186d | Triage

Sharing

General

Target

2dc4ddb5bf5d938b0a7c338cb2d502cf1ef7a4c114cc14edf3d198751036186d
Size

80KB
Sample

240415-ynad7sha5z
MD5

4c88663a7c82ab3de2b87cbd3951c458
SHA1

c6939dd4b35c6235e37c242772ab4be6ffd85dc7
SHA256

2dc4ddb5bf5d938b0a7c338cb2d502cf1ef7a4c114cc14edf3d198751036186d
SHA512

9ec8abb64380028185b1fef80bc09e1cbd0488fc2eed43eff188164429d6a5d1099e06fbe89705133bc829af6bd8d96798989d43a9a994b8fbaca67520f033b4
SSDEEP

1536:1qaMCkJwwK7EG3o6Y+P5JR89Dyq5eeeeeeeeyq2Lt0Vwfi+TjRC/6i:1qakJwwKb3o6xrR89neawf1TjYL

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  2dc4ddb5bf5d938b0a7c338cb2d502cf1ef7a4c114cc14edf3d198751036186d
- Size
  
  80KB
- MD5
  
  4c88663a7c82ab3de2b87cbd3951c458
- SHA1
  
  c6939dd4b35c6235e37c242772ab4be6ffd85dc7
- SHA256
  
  2dc4ddb5bf5d938b0a7c338cb2d502cf1ef7a4c114cc14edf3d198751036186d
- SHA512
  
  9ec8abb64380028185b1fef80bc09e1cbd0488fc2eed43eff188164429d6a5d1099e06fbe89705133bc829af6bd8d96798989d43a9a994b8fbaca67520f033b4
- SSDEEP
  
  1536:1qaMCkJwwK7EG3o6Y+P5JR89Dyq5eeeeeeeeyq2Lt0Vwfi+TjRC/6i:1qakJwwKb3o6xrR89neawf1TjYL
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2