cdb9b4a51b9784c7b4653213ec8dc1a6efc1e918eb30a8587bcb998ee628424c | Triage

Sharing

Copy URL Twitter E-mail

General

Target

cdb9b4a51b9784c7b4653213ec8dc1a6efc1e918eb30a8587bcb998ee628424c
Size

248KB
Sample

240425-d1z56sef9x
MD5

b05e13be82b2279f32f10e37aeb9809b
SHA1

a17927aca346c8cc32204147013f236ce4c6a163
SHA256

cdb9b4a51b9784c7b4653213ec8dc1a6efc1e918eb30a8587bcb998ee628424c
SHA512

4fd744e54e07eba341917f5d8602337bec148a19359a84fe1a217285ff7d290c5388fe8475efaf2d9abffa550c055883ab6197096a3287142041504bfdb241cd
SSDEEP

3072:xn62WgvLvlCJMnvAlkb24+SVAURfE+HXAB0kCySYo0B:xn62WOTQAvAl7SRs+HXc0uo0B

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  cdb9b4a51b9784c7b4653213ec8dc1a6efc1e918eb30a8587bcb998ee628424c
- Size
  
  248KB
- MD5
  
  b05e13be82b2279f32f10e37aeb9809b
- SHA1
  
  a17927aca346c8cc32204147013f236ce4c6a163
- SHA256
  
  cdb9b4a51b9784c7b4653213ec8dc1a6efc1e918eb30a8587bcb998ee628424c
- SHA512
  
  4fd744e54e07eba341917f5d8602337bec148a19359a84fe1a217285ff7d290c5388fe8475efaf2d9abffa550c055883ab6197096a3287142041504bfdb241cd
- SSDEEP
  
  3072:xn62WgvLvlCJMnvAlkb24+SVAURfE+HXAB0kCySYo0B:xn62WOTQAvAl7SRs+HXc0uo0B
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2