7cf473211dc71f5b3b7c0bb3c0587bceb0a4cb5f627a76f6eea9df0ab4d54e01 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

7cf473211dc71f5b3b7c0bb3c0587bceb0a4cb5f627a76f6eea9df0ab4d54e01
Size

1.7MB
Sample

240625-3h6mnsshmn
MD5

34764770de654768fc8bccff46971080
SHA1

20fd5b53a9e8299f53054ca8179506784f87dea9
SHA256

7cf473211dc71f5b3b7c0bb3c0587bceb0a4cb5f627a76f6eea9df0ab4d54e01
SHA512

fc9a95108f7e10deb1b0fdb7eb972b0282f158d7860af05e6523059334ed15a73f10dace7c7ec482430de990b7cda72d8d1462b5e2e46f6bb7671ae1d525311d
SSDEEP

49152:Nix7/ix7yix7/ix7Xcix7/ix7yix7/ix7:NU/UyU/UXcU/UyU/U

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  7cf473211dc71f5b3b7c0bb3c0587bceb0a4cb5f627a76f6eea9df0ab4d54e01
- Size
  
  1.7MB
- MD5
  
  34764770de654768fc8bccff46971080
- SHA1
  
  20fd5b53a9e8299f53054ca8179506784f87dea9
- SHA256
  
  7cf473211dc71f5b3b7c0bb3c0587bceb0a4cb5f627a76f6eea9df0ab4d54e01
- SHA512
  
  fc9a95108f7e10deb1b0fdb7eb972b0282f158d7860af05e6523059334ed15a73f10dace7c7ec482430de990b7cda72d8d1462b5e2e46f6bb7671ae1d525311d
- SSDEEP
  
  49152:Nix7/ix7yix7/ix7Xcix7/ix7yix7/ix7:NU/UyU/UXcU/UyU/U
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2