dc108d32d3c74c701ed05dce9040828d9ae9f18cb5710bd9e705044e6d8121fb | Triage

Sharing

General

Target

dc108d32d3c74c701ed05dce9040828d9ae9f18cb5710bd9e705044e6d8121fb
Size

308KB
Sample

240604-ek18zadb22
MD5

29a3624d8194d596368e82b59d4eaa14
SHA1

2e3816140a1b4a211ecb1003cd8607381365838e
SHA256

dc108d32d3c74c701ed05dce9040828d9ae9f18cb5710bd9e705044e6d8121fb
SHA512

de1a7976d565bc88e7a3ff94457a02c11b6cf63851deb9f26694e6073ae394dc58a44ae528d22acb3ba707dc5d63c90424f7da6779fee70ccb0bdf27b1391284
SSDEEP

3072:rwoUxcReDx7Cd/jMhqd35grzrjpZiZXUK0b+qSMJ6CereLjBP3mhg:SxcRetMjMq1CrzrjpZwE3LereLVmhg

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  dc108d32d3c74c701ed05dce9040828d9ae9f18cb5710bd9e705044e6d8121fb
- Size
  
  308KB
- MD5
  
  29a3624d8194d596368e82b59d4eaa14
- SHA1
  
  2e3816140a1b4a211ecb1003cd8607381365838e
- SHA256
  
  dc108d32d3c74c701ed05dce9040828d9ae9f18cb5710bd9e705044e6d8121fb
- SHA512
  
  de1a7976d565bc88e7a3ff94457a02c11b6cf63851deb9f26694e6073ae394dc58a44ae528d22acb3ba707dc5d63c90424f7da6779fee70ccb0bdf27b1391284
- SSDEEP
  
  3072:rwoUxcReDx7Cd/jMhqd35grzrjpZiZXUK0b+qSMJ6CereLjBP3mhg:SxcRetMjMq1CrzrjpZwE3LereLVmhg
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2