9cb881d8f96bb19c1ab0ce0f0530d92667895868ada1a6a4b8dc9afd71fc2869 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

9cb881d8f96bb19c1ab0ce0f0530d92667895868ada1a6a4b8dc9afd71fc2869
Size

1.2MB
Sample

240517-cej2dsce27
MD5

15db093ac1a000b75019b88e67b2464b
SHA1

0a51ad7373fad7cbfea2d648641b314440e044eb
SHA256

9cb881d8f96bb19c1ab0ce0f0530d92667895868ada1a6a4b8dc9afd71fc2869
SHA512

5d2aaea2865689a23fdff8e25725e5447742a99e01517c265c3ee81cb677f40a494bc0371ce4a0b025a5f62dc99f1e63373378ff1225996d2768d872f1d6c580
SSDEEP

12288:sBvzDVqvQ6Ivxv26IveDVqvQ6IvpW1nvv6IveDVqvQ6IvYvc6IveDVqvQ6IvGm03:05hwq5hVW1nq5h3q5hL6X1q5h3q5h

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  9cb881d8f96bb19c1ab0ce0f0530d92667895868ada1a6a4b8dc9afd71fc2869
- Size
  
  1.2MB
- MD5
  
  15db093ac1a000b75019b88e67b2464b
- SHA1
  
  0a51ad7373fad7cbfea2d648641b314440e044eb
- SHA256
  
  9cb881d8f96bb19c1ab0ce0f0530d92667895868ada1a6a4b8dc9afd71fc2869
- SHA512
  
  5d2aaea2865689a23fdff8e25725e5447742a99e01517c265c3ee81cb677f40a494bc0371ce4a0b025a5f62dc99f1e63373378ff1225996d2768d872f1d6c580
- SSDEEP
  
  12288:sBvzDVqvQ6Ivxv26IveDVqvQ6IvpW1nvv6IveDVqvQ6IvYvc6IveDVqvQ6IvGm03:05hwq5hVW1nq5h3q5hL6X1q5h3q5h
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2