c618da5016ea844311ce5e6ae5a11b88a876525cdc21c2ea897836658aecfc24 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c618da5016ea844311ce5e6ae5a11b88a876525cdc21c2ea897836658aecfc24
Size

96KB
Sample

240510-c44r4ahe26
MD5

dcdca30964ad407bb0c6d36a2784e847
SHA1

a29c18cb7e888f989b519d84e3524db62f2f399f
SHA256

c618da5016ea844311ce5e6ae5a11b88a876525cdc21c2ea897836658aecfc24
SHA512

42d9565d04bfe4a6345c0f0b32ceb6f3b6b52ec32ef784be1c226fd39bc6533cda2e1d9a6c7b57971cea129ae81774ac224d2eeaae9203160fc7047969d6d5f6
SSDEEP

1536:Jy3A7yZLJXjV3jG1AZvWKWEDo2Sl8RFlQPjduV9jojTIvjrH:2ZNVjGWWADbS+RLQ7d69jc0vf

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  c618da5016ea844311ce5e6ae5a11b88a876525cdc21c2ea897836658aecfc24
- Size
  
  96KB
- MD5
  
  dcdca30964ad407bb0c6d36a2784e847
- SHA1
  
  a29c18cb7e888f989b519d84e3524db62f2f399f
- SHA256
  
  c618da5016ea844311ce5e6ae5a11b88a876525cdc21c2ea897836658aecfc24
- SHA512
  
  42d9565d04bfe4a6345c0f0b32ceb6f3b6b52ec32ef784be1c226fd39bc6533cda2e1d9a6c7b57971cea129ae81774ac224d2eeaae9203160fc7047969d6d5f6
- SSDEEP
  
  1536:Jy3A7yZLJXjV3jG1AZvWKWEDo2Sl8RFlQPjduV9jojTIvjrH:2ZNVjGWWADbS+RLQ7d69jc0vf
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2