c09db936ea983307edbb3c7ff513a13a3d1a223d8cbc323579fd4d5a3832eb7d | Triage

Sharing

General

Target

c09db936ea983307edbb3c7ff513a13a3d1a223d8cbc323579fd4d5a3832eb7d
Size

362KB
Sample

240614-d6gk1stend
MD5

c177caeb7ae6d2a22c4773d5c3a9dfbd
SHA1

6eb0453fefa6930320e3de3acec5065d9bd4ba96
SHA256

c09db936ea983307edbb3c7ff513a13a3d1a223d8cbc323579fd4d5a3832eb7d
SHA512

e6ef0e2ac37854485b79d005cc1a7da9ae3d2941432fec98113857baebefbcb051c3c159b8b28d04cbe02246127977b8a438c5b6e44608be8ef75fda6bcbd9bc
SSDEEP

6144:bLFcBDsLBQBXf0Rg72xfJ9aCzrwbo1pw00+qnrLYC/VuwkdbA4+D6ByqrLYC/Vur:bkqROhtYNY6ThtY

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  c09db936ea983307edbb3c7ff513a13a3d1a223d8cbc323579fd4d5a3832eb7d
- Size
  
  362KB
- MD5
  
  c177caeb7ae6d2a22c4773d5c3a9dfbd
- SHA1
  
  6eb0453fefa6930320e3de3acec5065d9bd4ba96
- SHA256
  
  c09db936ea983307edbb3c7ff513a13a3d1a223d8cbc323579fd4d5a3832eb7d
- SHA512
  
  e6ef0e2ac37854485b79d005cc1a7da9ae3d2941432fec98113857baebefbcb051c3c159b8b28d04cbe02246127977b8a438c5b6e44608be8ef75fda6bcbd9bc
- SSDEEP
  
  6144:bLFcBDsLBQBXf0Rg72xfJ9aCzrwbo1pw00+qnrLYC/VuwkdbA4+D6ByqrLYC/Vur:bkqROhtYNY6ThtY
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2