c19b8fd15dfac70cb89f3e6981d58d17763a9b46844159049cac6c9ad6693373 | Triage

Sharing

General

Target

c19b8fd15dfac70cb89f3e6981d58d17763a9b46844159049cac6c9ad6693373
Size

60KB
Sample

240510-cw7tsagh53
MD5

cefec5554c4ddd212c3b55d62ce2f5f4
SHA1

224778205af208d5a1cc913fdc67f022f661d4c9
SHA256

c19b8fd15dfac70cb89f3e6981d58d17763a9b46844159049cac6c9ad6693373
SHA512

ff280a12fdd5ba39b8bf66234dbf20cb7fc1ff109fba257299e89ea5d889e26f1b0b6584b3fed6f20aac02da73d6fa04e5d8e3cf5ea483cb666a7ba316849a12
SSDEEP

1536:DnM+8Fe1jgmjFMuK/XIvR56S38WB86l1rs:78Fe1jLMuv56jWB86l1rs

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  c19b8fd15dfac70cb89f3e6981d58d17763a9b46844159049cac6c9ad6693373
- Size
  
  60KB
- MD5
  
  cefec5554c4ddd212c3b55d62ce2f5f4
- SHA1
  
  224778205af208d5a1cc913fdc67f022f661d4c9
- SHA256
  
  c19b8fd15dfac70cb89f3e6981d58d17763a9b46844159049cac6c9ad6693373
- SHA512
  
  ff280a12fdd5ba39b8bf66234dbf20cb7fc1ff109fba257299e89ea5d889e26f1b0b6584b3fed6f20aac02da73d6fa04e5d8e3cf5ea483cb666a7ba316849a12
- SSDEEP
  
  1536:DnM+8Fe1jgmjFMuK/XIvR56S38WB86l1rs:78Fe1jLMuv56jWB86l1rs
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2