2cd74fff736fbe79e421630d7c2b2e6196c4d74e339cad1404f2678d6b04952c | Triage

Sharing

General

Target

2cd74fff736fbe79e421630d7c2b2e6196c4d74e339cad1404f2678d6b04952c
Size

570KB
Sample

240511-yqtwmaeg7y
MD5

1dcb1f27e9b55edc7e480dd80200bfbc
SHA1

5551c9a2dd2c639aefed0b1dc5473b6c1205a2dc
SHA256

2cd74fff736fbe79e421630d7c2b2e6196c4d74e339cad1404f2678d6b04952c
SHA512

53d467389a1ddc204fb1f135c959e9f3d0e00ee0fc1cb3d92cd8a846a340d81f2acd91769638b2037480c225ea1fa33c217e35f3fd8ea3a43678c82aa68b3afa
SSDEEP

12288:O5a+sdEIPh2kkkkK4kXkkkkkkkkl888888888888888888nusMH0QiRLsRf:OI+YTPh2kkkkK4kXkkkkkkkkhLg

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  2cd74fff736fbe79e421630d7c2b2e6196c4d74e339cad1404f2678d6b04952c
- Size
  
  570KB
- MD5
  
  1dcb1f27e9b55edc7e480dd80200bfbc
- SHA1
  
  5551c9a2dd2c639aefed0b1dc5473b6c1205a2dc
- SHA256
  
  2cd74fff736fbe79e421630d7c2b2e6196c4d74e339cad1404f2678d6b04952c
- SHA512
  
  53d467389a1ddc204fb1f135c959e9f3d0e00ee0fc1cb3d92cd8a846a340d81f2acd91769638b2037480c225ea1fa33c217e35f3fd8ea3a43678c82aa68b3afa
- SSDEEP
  
  12288:O5a+sdEIPh2kkkkK4kXkkkkkkkkl888888888888888888nusMH0QiRLsRf:OI+YTPh2kkkkK4kXkkkkkkkkhLg
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2