c81885730f755e9db27db009a02c19d298fdb1b20970dc3255ed3a13233ab6a1 | Triage

Sharing

General

Target

c81885730f755e9db27db009a02c19d298fdb1b20970dc3255ed3a13233ab6a1
Size

91KB
Sample

240511-cxjtcaah39
MD5

66481b48ba35ff6d05fdba80b70757b7
SHA1

badd3d5ad5822b7aea707303b2e8dab346c4aaaf
SHA256

c81885730f755e9db27db009a02c19d298fdb1b20970dc3255ed3a13233ab6a1
SHA512

38773c9dffdb3b7201a8011ef912ce9e82a2647926098e48ea3396a5476ac3220deecad55cb6b923aa15f0eafade671bdb8044f39fa37d1d0ea7d46d0b104192
SSDEEP

1536:gt0QSb2e1PR5dJlNxrg5EOvADHxVcqO9K38y2SWRlsVX0Yr/viVMi:odM2e1J3wADYqJHFEo/vOMi

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  c81885730f755e9db27db009a02c19d298fdb1b20970dc3255ed3a13233ab6a1
- Size
  
  91KB
- MD5
  
  66481b48ba35ff6d05fdba80b70757b7
- SHA1
  
  badd3d5ad5822b7aea707303b2e8dab346c4aaaf
- SHA256
  
  c81885730f755e9db27db009a02c19d298fdb1b20970dc3255ed3a13233ab6a1
- SHA512
  
  38773c9dffdb3b7201a8011ef912ce9e82a2647926098e48ea3396a5476ac3220deecad55cb6b923aa15f0eafade671bdb8044f39fa37d1d0ea7d46d0b104192
- SSDEEP
  
  1536:gt0QSb2e1PR5dJlNxrg5EOvADHxVcqO9K38y2SWRlsVX0Yr/viVMi:odM2e1J3wADYqJHFEo/vOMi
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2