9d4ea21beef8e72881d497837353b78982a6553be88ee184918747091b46169c | Triage

Sharing

Copy URL Twitter E-mail

General

Target

9d4ea21beef8e72881d497837353b78982a6553be88ee184918747091b46169c
Size

76KB
Sample

240417-clbctsah79
MD5

c20b8e623c0fae42170ef1dbe6817372
SHA1

03e5f25ba12c49c7a4695c101734473162f3f86d
SHA256

9d4ea21beef8e72881d497837353b78982a6553be88ee184918747091b46169c
SHA512

b26948b506cdb5df2dbcde9bfd639af29bb17c83c0365b827f5d70d4a18070e00ec76aca36fc422068f46b801823347a5476ac12a1ff06ac4acafe51294b6959
SSDEEP

1536:K8iXd8j9BhdlAFE5IUrXZ8l+5XEluz0GQ6HioQV+/eCeyvCQ:HiN8jWFE5IUrX9Q6Hrk+

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  9d4ea21beef8e72881d497837353b78982a6553be88ee184918747091b46169c
- Size
  
  76KB
- MD5
  
  c20b8e623c0fae42170ef1dbe6817372
- SHA1
  
  03e5f25ba12c49c7a4695c101734473162f3f86d
- SHA256
  
  9d4ea21beef8e72881d497837353b78982a6553be88ee184918747091b46169c
- SHA512
  
  b26948b506cdb5df2dbcde9bfd639af29bb17c83c0365b827f5d70d4a18070e00ec76aca36fc422068f46b801823347a5476ac12a1ff06ac4acafe51294b6959
- SSDEEP
  
  1536:K8iXd8j9BhdlAFE5IUrXZ8l+5XEluz0GQ6HioQV+/eCeyvCQ:HiN8jWFE5IUrX9Q6Hrk+
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2