1c817c6923f7c2337d5cbd4f00f638e200cf0f1f7802b4f85fd434d50c36d491 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

56e31e59bd779671835eb308158a6c70.bin
Size

80KB
Sample

240620-cx45aayarl
MD5

56e31e59bd779671835eb308158a6c70
SHA1

cb6a86922826741b8d7d2563a34508086242222e
SHA256

1c817c6923f7c2337d5cbd4f00f638e200cf0f1f7802b4f85fd434d50c36d491
SHA512

ad9e1974d209cbab9ad16c785cc5d5e46d0c4742f7bbb03ea3d54c6a81165b2ecc2fe2e84e11ae254f658b4e8ba84f2e44cfa0b3c692144b54b593315fb3af25
SSDEEP

1536:wNcAnNgp7/dJOZoeFm5lnusED8T2LPS5DUHRbPa9b6i+sIk:wNtgBp5IsEAwPS5DSCopsIk

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  56e31e59bd779671835eb308158a6c70.bin
- Size
  
  80KB
- MD5
  
  56e31e59bd779671835eb308158a6c70
- SHA1
  
  cb6a86922826741b8d7d2563a34508086242222e
- SHA256
  
  1c817c6923f7c2337d5cbd4f00f638e200cf0f1f7802b4f85fd434d50c36d491
- SHA512
  
  ad9e1974d209cbab9ad16c785cc5d5e46d0c4742f7bbb03ea3d54c6a81165b2ecc2fe2e84e11ae254f658b4e8ba84f2e44cfa0b3c692144b54b593315fb3af25
- SSDEEP
  
  1536:wNcAnNgp7/dJOZoeFm5lnusED8T2LPS5DUHRbPa9b6i+sIk:wNtgBp5IsEAwPS5DSCopsIk
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2