ddfb94e26d0504a3f88384b989c9b71db08df4c3142b624d87d8d833a3e1bb01 | Triage

Sharing

General

Target

ddfb94e26d0504a3f88384b989c9b71db08df4c3142b624d87d8d833a3e1bb01
Size

64KB
Sample

240520-d7j3jahh75
MD5

c8845e62b46d2da080c78e65f6f9f8a5
SHA1

a9e15312a485029ae040ad752049e9ac9a176264
SHA256

ddfb94e26d0504a3f88384b989c9b71db08df4c3142b624d87d8d833a3e1bb01
SHA512

79f34ec4ae4287d5bd83dd76ae45c92126cfb881ddea75b28ac4ec4c432a2a70a42ff1b2cf10b158201cd839d86806d6112c0ed4b9aeefff8786db68625a6d63
SSDEEP

1536:i+grTQA0uYSOfYd/tFnc0MdqStfAmyORLBK5ZWygrPFW2iwTbW:W1NYSOfYd/XnMdYAoZXcFW2VTbW

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  ddfb94e26d0504a3f88384b989c9b71db08df4c3142b624d87d8d833a3e1bb01
- Size
  
  64KB
- MD5
  
  c8845e62b46d2da080c78e65f6f9f8a5
- SHA1
  
  a9e15312a485029ae040ad752049e9ac9a176264
- SHA256
  
  ddfb94e26d0504a3f88384b989c9b71db08df4c3142b624d87d8d833a3e1bb01
- SHA512
  
  79f34ec4ae4287d5bd83dd76ae45c92126cfb881ddea75b28ac4ec4c432a2a70a42ff1b2cf10b158201cd839d86806d6112c0ed4b9aeefff8786db68625a6d63
- SSDEEP
  
  1536:i+grTQA0uYSOfYd/tFnc0MdqStfAmyORLBK5ZWygrPFW2iwTbW:W1NYSOfYd/XnMdYAoZXcFW2VTbW
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2