4d6cc2fb19d3b902276a7cad1d471bc94c66318ef3ae560ecc9ecf110c92a480 | Triage

Sharing

General

Target

4d6cc2fb19d3b902276a7cad1d471bc94c66318ef3ae560ecc9ecf110c92a480
Size

192KB
Sample

240601-z1jzvafa9s
MD5

2a9c511fe0e3c0ef826893bd19c96231
SHA1

991e057dcfb575cc2a9e0b880ffa52b686af67c4
SHA256

4d6cc2fb19d3b902276a7cad1d471bc94c66318ef3ae560ecc9ecf110c92a480
SHA512

e951d4ca03ef2d97a2b45a358bc54cb68f75e2a18399695b350811d811d3a019993a5c335dbfc47ba2ec39046d06928f614753c4c34fc955deb839c3da49a0cd
SSDEEP

3072:Y0CLVntRwEXgy0nNNYQ+zEXeFKPD375lHzpa1P2FU6UK7q4+5DbGTO6GQd3JSZOx:Y06t3XvzEXeYr75lHzpaF2e6UK+42GT/

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  4d6cc2fb19d3b902276a7cad1d471bc94c66318ef3ae560ecc9ecf110c92a480
- Size
  
  192KB
- MD5
  
  2a9c511fe0e3c0ef826893bd19c96231
- SHA1
  
  991e057dcfb575cc2a9e0b880ffa52b686af67c4
- SHA256
  
  4d6cc2fb19d3b902276a7cad1d471bc94c66318ef3ae560ecc9ecf110c92a480
- SHA512
  
  e951d4ca03ef2d97a2b45a358bc54cb68f75e2a18399695b350811d811d3a019993a5c335dbfc47ba2ec39046d06928f614753c4c34fc955deb839c3da49a0cd
- SSDEEP
  
  3072:Y0CLVntRwEXgy0nNNYQ+zEXeFKPD375lHzpa1P2FU6UK7q4+5DbGTO6GQd3JSZOx:Y06t3XvzEXeYr75lHzpaF2e6UK+42GT/
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2