c68c38df1e420be6654e7cae8efb6246a83f4e503e3d0b0c4096a443ab854f5b | Triage

Sharing

General

Target

c68c38df1e420be6654e7cae8efb6246a83f4e503e3d0b0c4096a443ab854f5b
Size

161KB
Sample

240430-cxymhaac8v
MD5

0866ff7637b72809cd6dc16bcb8e61fc
SHA1

a0c84aa228e1a7206bdc7639878c19e6ad747bb4
SHA256

c68c38df1e420be6654e7cae8efb6246a83f4e503e3d0b0c4096a443ab854f5b
SHA512

2c9196f7be7f364ba5e0a5056ecb6f3ebddf236c089ffa52dbd5122cf1aaa9afe53769048365b2c040e2eb7a2eff4483ea1d159dc96fb6d49b20b7e68fe2f9a3
SSDEEP

3072:JbdVuK5APdq2lAFYrlokEVwtCJXeex7rrIRZK8K8/kv:BdMKWqKAzkEVwtmeetrIyR

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  c68c38df1e420be6654e7cae8efb6246a83f4e503e3d0b0c4096a443ab854f5b
- Size
  
  161KB
- MD5
  
  0866ff7637b72809cd6dc16bcb8e61fc
- SHA1
  
  a0c84aa228e1a7206bdc7639878c19e6ad747bb4
- SHA256
  
  c68c38df1e420be6654e7cae8efb6246a83f4e503e3d0b0c4096a443ab854f5b
- SHA512
  
  2c9196f7be7f364ba5e0a5056ecb6f3ebddf236c089ffa52dbd5122cf1aaa9afe53769048365b2c040e2eb7a2eff4483ea1d159dc96fb6d49b20b7e68fe2f9a3
- SSDEEP
  
  3072:JbdVuK5APdq2lAFYrlokEVwtCJXeex7rrIRZK8K8/kv:BdMKWqKAzkEVwtmeetrIyR
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2