dcc22bf8a2f0536d5beff758ab353caf8d5ebbe5de08ab6d738203d0e17dc221 | Triage

Sharing

General

Target

dcc22bf8a2f0536d5beff758ab353caf8d5ebbe5de08ab6d738203d0e17dc221
Size

368KB
Sample

240617-dlekxswanl
MD5

edeaa755f09d2a38e7aeff35ced4ea98
SHA1

f9739344b08b553f8b9634d72fbf512878c09615
SHA256

dcc22bf8a2f0536d5beff758ab353caf8d5ebbe5de08ab6d738203d0e17dc221
SHA512

044d2a9964f86b35933452259e7960192c36bddc8b935aa9f51b1cfa72e2d58e92ae5ec4b0346fdef2a3adb144ffa85e38e1e45a98602bb98a0f21e9ea661588
SSDEEP

6144:Fb64qWJE4f9FIUpOVw86CmOJfTo9FIUIhrcflDMxy9FIUpOVw86CmOJfTo9FIU28:dTqnaAD6RrI1+lDMEAD6Rr2NWL

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  dcc22bf8a2f0536d5beff758ab353caf8d5ebbe5de08ab6d738203d0e17dc221
- Size
  
  368KB
- MD5
  
  edeaa755f09d2a38e7aeff35ced4ea98
- SHA1
  
  f9739344b08b553f8b9634d72fbf512878c09615
- SHA256
  
  dcc22bf8a2f0536d5beff758ab353caf8d5ebbe5de08ab6d738203d0e17dc221
- SHA512
  
  044d2a9964f86b35933452259e7960192c36bddc8b935aa9f51b1cfa72e2d58e92ae5ec4b0346fdef2a3adb144ffa85e38e1e45a98602bb98a0f21e9ea661588
- SSDEEP
  
  6144:Fb64qWJE4f9FIUpOVw86CmOJfTo9FIUIhrcflDMxy9FIUpOVw86CmOJfTo9FIU28:dTqnaAD6RrI1+lDMEAD6Rr2NWL
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2