c9280e9164396c32b00bf690f5aced78db7fe7b6e162984e8766dae0d20d346d | Triage

Sharing

General

Target

c9280e9164396c32b00bf690f5aced78db7fe7b6e162984e8766dae0d20d346d
Size

78KB
Sample

240505-exhx6aeg2x
MD5

21232de3e082559c77d93c14e8338ab7
SHA1

4bb6a302b75906bbd8fbb07aff7a5da8e7190074
SHA256

c9280e9164396c32b00bf690f5aced78db7fe7b6e162984e8766dae0d20d346d
SHA512

c570bfb72c981fb91489fa9236f8716a8971a1e17098d9bcff5673689b9abbdc41ca6b85d9078c5aec51571c7f8748493a4736cc4e54da3b012a0fccc14ba5a5
SSDEEP

1536:BK3RZYWM/bYHcUCkWroJbnjn13tNMliVQqN+zL20gJi1ie:4Xf8UCkWr2jdQliVZgzL20WKt

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  c9280e9164396c32b00bf690f5aced78db7fe7b6e162984e8766dae0d20d346d
- Size
  
  78KB
- MD5
  
  21232de3e082559c77d93c14e8338ab7
- SHA1
  
  4bb6a302b75906bbd8fbb07aff7a5da8e7190074
- SHA256
  
  c9280e9164396c32b00bf690f5aced78db7fe7b6e162984e8766dae0d20d346d
- SHA512
  
  c570bfb72c981fb91489fa9236f8716a8971a1e17098d9bcff5673689b9abbdc41ca6b85d9078c5aec51571c7f8748493a4736cc4e54da3b012a0fccc14ba5a5
- SSDEEP
  
  1536:BK3RZYWM/bYHcUCkWroJbnjn13tNMliVQqN+zL20gJi1ie:4Xf8UCkWr2jdQliVZgzL20WKt
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2