894c19122bb70fbd0f6eb67e1b1cf018a04678b7b90d1fbc6ad6a4e4a7b1bcec | Triage

Sharing

General

Target

virussign.com_cd4929e690bbb68f0116b73fcd71f0c0.vir
Size

80KB
Sample

240602-xlm2vace28
MD5

cd4929e690bbb68f0116b73fcd71f0c0
SHA1

06276fe2f35a0c4473bcd372dcc02ea32128ecaa
SHA256

894c19122bb70fbd0f6eb67e1b1cf018a04678b7b90d1fbc6ad6a4e4a7b1bcec
SHA512

a81bccbdba3b7f1eb1c15d36039b9929ab6b60203bc718cc7fe17d3c89ebbe02fc93b5779e6c9b5510fae792217c2b127482985f2bd07cc21fee8cc7bb867733
SSDEEP

1536:mAZ3ga9QtNP7sU59XobrQB9el2LXJ9VqDlzVxyh+CbxMa:mARg/tNDsDrQB9eWXJ9IDlRxyhTb7

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  virussign.com_cd4929e690bbb68f0116b73fcd71f0c0.vir
- Size
  
  80KB
- MD5
  
  cd4929e690bbb68f0116b73fcd71f0c0
- SHA1
  
  06276fe2f35a0c4473bcd372dcc02ea32128ecaa
- SHA256
  
  894c19122bb70fbd0f6eb67e1b1cf018a04678b7b90d1fbc6ad6a4e4a7b1bcec
- SHA512
  
  a81bccbdba3b7f1eb1c15d36039b9929ab6b60203bc718cc7fe17d3c89ebbe02fc93b5779e6c9b5510fae792217c2b127482985f2bd07cc21fee8cc7bb867733
- SSDEEP
  
  1536:mAZ3ga9QtNP7sU59XobrQB9el2LXJ9VqDlzVxyh+CbxMa:mARg/tNDsDrQB9eWXJ9IDlRxyhTb7
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2