c978118d298b33f606d525b6e46edcdb8e6e9d518ef2785845c29219adc3cb83 | Triage

Sharing

General

Target

c978118d298b33f606d525b6e46edcdb8e6e9d518ef2785845c29219adc3cb83
Size

121KB
Sample

240524-dr7hwsbb3w
MD5

39a5e212c95bbc7ad0a7b9f2960e128f
SHA1

7af04d8bb5fca3e2340bdf3045846373df2af0df
SHA256

c978118d298b33f606d525b6e46edcdb8e6e9d518ef2785845c29219adc3cb83
SHA512

cd8f60c790fdea31ebd5f57f05522773670f0f711bdfdda9da75704bc7fe9de3be1c8a46ef1dc5dcb91207d3866ad7dd224185937d03cc150a9da8041a08d6db
SSDEEP

3072:NFVzURnHzpw1e66sjEAvKw0od0+kO7AJnD5tvv:hQ5q1e66s420odLkOarvv

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  c978118d298b33f606d525b6e46edcdb8e6e9d518ef2785845c29219adc3cb83
- Size
  
  121KB
- MD5
  
  39a5e212c95bbc7ad0a7b9f2960e128f
- SHA1
  
  7af04d8bb5fca3e2340bdf3045846373df2af0df
- SHA256
  
  c978118d298b33f606d525b6e46edcdb8e6e9d518ef2785845c29219adc3cb83
- SHA512
  
  cd8f60c790fdea31ebd5f57f05522773670f0f711bdfdda9da75704bc7fe9de3be1c8a46ef1dc5dcb91207d3866ad7dd224185937d03cc150a9da8041a08d6db
- SSDEEP
  
  3072:NFVzURnHzpw1e66sjEAvKw0od0+kO7AJnD5tvv:hQ5q1e66s420odLkOarvv
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2